@mongodb-js/sbom-tools
Advanced tools
+6
-6
@@ -19,3 +19,3 @@ { | ||
| "homepage": "https://github.com/mongodb-js/devtools-shared", | ||
| "version": "0.8.5", | ||
| "version": "0.9.0", | ||
| "repository": { | ||
@@ -60,5 +60,5 @@ "type": "git", | ||
| "@mongodb-js/eslint-config-devtools": "0.9.12", | ||
| "@mongodb-js/mocha-config-devtools": "^1.0.5", | ||
| "@mongodb-js/mocha-config-devtools": "^1.1.0", | ||
| "@mongodb-js/prettier-config-devtools": "^1.0.2", | ||
| "@mongodb-js/tsconfig-devtools": "^1.0.4", | ||
| "@mongodb-js/tsconfig-devtools": "^1.1.0", | ||
| "@types/chai": "^4.2.21", | ||
@@ -73,3 +73,3 @@ "@types/lodash": "^4.14.194", | ||
| "depcheck": "^1.4.7", | ||
| "eslint": "^7.25.0", | ||
| "eslint": "^7.25.0 || ^8.0.0", | ||
| "gen-esm-wrapper": "^1.1.3", | ||
@@ -82,3 +82,3 @@ "mocha": "^8.4.0", | ||
| "sinon": "^9.2.3", | ||
| "typescript": "^5.0.4", | ||
| "typescript": "^5.8.2", | ||
| "webpack": "^5.82.0" | ||
@@ -98,3 +98,3 @@ }, | ||
| }, | ||
| "gitHead": "8928faef983172b1ade2647008b9f6a0183e4a13" | ||
| "gitHead": "b2af8b270fe9e191500c9c8440118a5eb9aab4a3" | ||
| } |
Network access
Supply chain riskThis module accesses the network.
Found 1 instance in 1 package
Shell access
Supply chain riskThis module accesses the system shell. Accessing the system shell increases the risk of executing arbitrary code.
Found 1 instance in 1 package
Environment variable access
Supply chain riskPackage accesses environment variables, which may be a sign of credential stuffing or data theft.
Found 7 instances in 1 package
Filesystem access
Supply chain riskAccesses the file system, and could potentially read sensitive data.
Found 2 instances in 1 package
Network access
Supply chain riskThis module accesses the network.
Found 1 instance in 1 package
Shell access
Supply chain riskThis module accesses the system shell. Accessing the system shell increases the risk of executing arbitrary code.
Found 1 instance in 1 package
Environment variable access
Supply chain riskPackage accesses environment variables, which may be a sign of credential stuffing or data theft.
Found 7 instances in 1 package
Filesystem access
Supply chain riskAccesses the file system, and could potentially read sensitive data.
Found 2 instances in 1 package
140646
0.01%