Vulnerablity fixes phase 1#211
Closed
cx-atish-jadhav wants to merge 1 commit into
Closed
StepSecurity Actions Security / StepSecurity Required Checks
succeeded
Jun 17, 2026 in 0s
StepSecurity Required Checks
Finished StepSecurity Required Checks
- NPM Compromised Packages Check - Checks for compromised npm package versions in the PR
- NPM Package Cooldown Check - Fails if any package version in the PR was released within the configured cooldown period, helping to avoid brand-new (and potentially unreviewed or malicious) releases
- PyPI Compromised Packages Check - Checks for compromised PyPI package versions in the PR
- PyPI Package Cooldown Check - Fails if any PyPI package version in the PR was released within the configured cooldown period
- Pwn Request Vulnerabilities Check - Checks for Pwn Request vulnerabilities in the PR via risky triggers
- Script Injection Check - Checks for script injection vulnerabilities in the PR
Details
✅ PyPI Compromised Packages Check
No compromised PyPI package versions found in current PR.
✅ PyPI Package Cooldown Check
No PyPI package upgrades to recent releases found in current PR.
✅ Script Injection Vulnerabilities Check
No Script Injection vulnerabilities found in this PR.
✅ Pwn Request Vulnerabilities Check
No Pwn Request vulnerabilities found in this PR.
✅ NPM Compromised Packages Check
No Compromised npm packages are added in current PR.
✅ NPM Package Cooldown Check
No npm package upgrades to recent releases found in current PR.
The following npm packages are inspected in current PR
| Package Name | Previous Version | Current Version | file | Current Version Release Date |
|---|---|---|---|---|
| follow-redirects | 1.15.9 | 1.16.0 | package-lock.json | 2026-04-13T11:03:45Z |
| brace-expansion | 2.0.2 | 2.0.3 | package-lock.json | 2026-03-27T08:40:53Z |
| brace-expansion | 2.0.3 | package.json | 2026-03-27T08:40:53Z | |
| brace-expansion | 2.0.3 | src/tests/data/package.json | 2026-03-27T08:40:53Z | |
| brace-expansion | 2.0.2 | 2.0.3 | src/tests/data/package-lock.json | 2026-03-27T08:40:53Z |
| picomatch | 2.3.1 | 2.3.2 | src/tests/data/package-lock.json | 2026-03-23T20:39:08Z |
| picomatch | 2.3.1 | 2.3.2 | package-lock.json | 2026-03-23T20:39:08Z |
| picomatch | 2.3.2 | package.json | 2026-03-23T20:39:08Z | |
| picomatch | 2.3.2 | src/tests/data/package.json | 2026-03-23T20:39:08Z | |
| underscore | 1.13.8 | 1.13.8 | package.json | 2026-02-19T11:42:14Z |
| undici | 6.21.3 | 6.21.3 | src/tests/data/package.json | 2025-05-13T08:06:13Z |
| undici | 6.21.3 | 6.21.3 | package.json | 2025-05-13T08:06:13Z |
| uuid | 9.0.0 | package.json | 2022-09-05T20:03:54Z |
Loading