semantic-release
Advanced tools
+3
-3
| { | ||
| "name": "semantic-release", | ||
| "description": "Automated semver compliant package publishing", | ||
| "version": "25.0.1-beta.3", | ||
| "version": "25.0.1", | ||
| "type": "module", | ||
@@ -61,3 +61,3 @@ "author": "Stephan Bönnemann <stephan@boennemann.me> (http://boennemann.me)", | ||
| "devDependencies": { | ||
| "@types/node": "22.18.10", | ||
| "@types/node": "22.18.11", | ||
| "@types/signale": "1.4.7", | ||
@@ -71,3 +71,3 @@ "ava": "6.4.1", | ||
| "fs-extra": "11.3.2", | ||
| "got": "14.5.0", | ||
| "got": "14.6.0", | ||
| "js-yaml": "4.1.0", | ||
@@ -74,0 +74,0 @@ "lockfile-lint": "4.14.1", |
Network access
Supply chain riskThis module accesses the network.
Found 1 instance in 1 package
Environment variable access
Supply chain riskPackage accesses environment variables, which may be a sign of credential stuffing or data theft.
Found 1 instance in 1 package
Long strings
Supply chain riskContains long string literals, which may be a sign of obfuscated or packed code.
Found 1 instance in 1 package
URL strings
Supply chain riskPackage contains fragments of external URLs or IP addresses, which the package may be accessing at runtime.
Found 1 instance in 1 package
Network access
Supply chain riskThis module accesses the network.
Found 1 instance in 1 package
Environment variable access
Supply chain riskPackage accesses environment variables, which may be a sign of credential stuffing or data theft.
Found 1 instance in 1 package
Long strings
Supply chain riskContains long string literals, which may be a sign of obfuscated or packed code.
Found 1 instance in 1 package
No v1
QualityPackage is not semver >=1. This means it is not stable and does not support ^ ranges.
Found 1 instance in 1 package
URL strings
Supply chain riskPackage contains fragments of external URLs or IP addresses, which the package may be accessing at runtime.
Found 1 instance in 1 package
0
-100%294640
0