Bot update #36
dependency-review.yml
on: pull_request
dependency-review
1m 22s
Annotations
1 error and 10 warnings
dependency-review
Dependency review detected vulnerable packages.
|
OpenSSF Scorecard Warning
npm/crypto has an OpenSSF Scorecard of 2.6, which is less than this repository's threshold of 3.
|
OpenSSF Scorecard Warning
npm/agent-base has an OpenSSF Scorecard of 2.7, which is less than this repository's threshold of 3.
|
OpenSSF Scorecard Warning
npm/any-base has an OpenSSF Scorecard of 2, which is less than this repository's threshold of 3.
|
OpenSSF Scorecard Warning
npm/aproba has an OpenSSF Scorecard of 1.9, which is less than this repository's threshold of 3.
|
OpenSSF Scorecard Warning
npm/bottleneck has an OpenSSF Scorecard of 1.9, which is less than this repository's threshold of 3.
|
OpenSSF Scorecard Warning
npm/color-support has an OpenSSF Scorecard of 1.7, which is less than this repository's threshold of 3.
|
OpenSSF Scorecard Warning
npm/colors has an OpenSSF Scorecard of 2, which is less than this repository's threshold of 3.
|
OpenSSF Scorecard Warning
npm/cross-spawn has an OpenSSF Scorecard of 2, which is less than this repository's threshold of 3.
|
OpenSSF Scorecard Warning
npm/crypto has an OpenSSF Scorecard of 2.6, which is less than this repository's threshold of 3.
|
OpenSSF Scorecard Warning
npm/fs.realpath has an OpenSSF Scorecard of 2.5, which is less than this repository's threshold of 3.
|