@mongodb-js/sbom-tools
Advanced tools
+3
-3
@@ -19,3 +19,3 @@ { | ||
| "homepage": "https://github.com/mongodb-js/devtools-shared", | ||
| "version": "0.10.2", | ||
| "version": "0.10.3", | ||
| "repository": { | ||
@@ -59,3 +59,3 @@ "type": "git", | ||
| "devDependencies": { | ||
| "@mongodb-js/eslint-config-devtools": "^0.11.2", | ||
| "@mongodb-js/eslint-config-devtools": "^0.11.3", | ||
| "@mongodb-js/mocha-config-devtools": "^1.1.0", | ||
@@ -96,3 +96,3 @@ "@mongodb-js/prettier-config-devtools": "^1.0.2", | ||
| }, | ||
| "gitHead": "da4372646f24ef7c9ef6bb8224d0cf1f53be7540" | ||
| "gitHead": "81c2cb856d44c84b465137409c9b9655ce452fde" | ||
| } |
Network access
Supply chain riskThis module accesses the network.
Found 1 instance in 1 package
Shell access
Supply chain riskThis module accesses the system shell. Accessing the system shell increases the risk of executing arbitrary code.
Found 1 instance in 1 package
Environment variable access
Supply chain riskPackage accesses environment variables, which may be a sign of credential stuffing or data theft.
Found 7 instances in 1 package
Filesystem access
Supply chain riskAccesses the file system, and could potentially read sensitive data.
Found 2 instances in 1 package
URL strings
Supply chain riskPackage contains fragments of external URLs or IP addresses, which the package may be accessing at runtime.
Found 1 instance in 1 package
Network access
Supply chain riskThis module accesses the network.
Found 1 instance in 1 package
Shell access
Supply chain riskThis module accesses the system shell. Accessing the system shell increases the risk of executing arbitrary code.
Found 1 instance in 1 package
Environment variable access
Supply chain riskPackage accesses environment variables, which may be a sign of credential stuffing or data theft.
Found 7 instances in 1 package
Filesystem access
Supply chain riskAccesses the file system, and could potentially read sensitive data.
Found 2 instances in 1 package
URL strings
Supply chain riskPackage contains fragments of external URLs or IP addresses, which the package may be accessing at runtime.
Found 1 instance in 1 package