Skip to content

fix: bound JS CBOR parsing depth#45

Open
leanthebean wants to merge 1 commit into
base:mainfrom
leanthebean:security/bound-js-cbor-depth
Open

fix: bound JS CBOR parsing depth#45
leanthebean wants to merge 1 commit into
base:mainfrom
leanthebean:security/bound-js-cbor-depth

fix: bound JS CBOR parsing depth

b6b2682
Select commit
Loading
Failed to load commit list.
StepSecurity Actions Security / StepSecurity Required Checks succeeded Jun 22, 2026 in 0s

StepSecurity Required Checks

Finished StepSecurity Required Checks

  • NPM Package Cooldown Check - Fails if any package version in the PR was released within the configured cooldown period, helping to avoid brand-new (and potentially unreviewed or malicious) releases
  • NPM Compromised Packages Check - Checks for compromised npm package versions in the PR

Details

✅ NPM Package Cooldown Check

No npm package upgrades to recent releases found in current PR.

✅ NPM Compromised Packages Check

No Compromised npm packages are added in current PR.

View more details on StepSecurity Actions Security