Gathering detailed insights and metrics for @umijs/babel-plugin-import-to-await-require
Gathering detailed insights and metrics for @umijs/babel-plugin-import-to-await-require
Installations
npm install @umijs/babel-plugin-import-to-await-requireScore
56.7
Supply Chain
49.9
Quality
83.2
Maintenance
100
Vulnerability
98.2
License
Releases
525
Contributors
488
Developer
Developer Guide
BETA
Module System
CommonJS
Min. Node Version
Typescript Support
Yes
Node Version
16.20.2
NPM Version
8.19.4
Statistics
15,426 Stars
7,572 Commits
2,658 Forks
260 Watching
238 Branches
488 Contributors
Updated on 29 Nov 2024
Languages
TypeScript (92.42%)
Smarty (3.33%)
JavaScript (2.69%)
HTML (0.94%)
CSS (0.5%)
Less (0.07%)
Vue (0.04%)
Total Downloads
Cumulative downloads
Total Downloads
4,503,837
Last day
-3%
2,485
Compared to previous day
Last week
-20.1%
16,890
Compared to previous week
Last month
39.8%
63,643
Compared to previous month
Last year
-37.6%
658,996
Compared to previous year
Daily Downloads
Weekly Downloads
Monthly Downloads
Yearly Downloads
Dependencies
1
Dev Dependencies
1
Versions
umi
A framework in react community ✨
Please consider following this project's author, sorrycc, and consider starring the project to show your ❤️ and support.
🚀 Read the launch post →
📚 Learn Umi →
Contribution
See Contributing Guide.
Core Maintainers
Core Maintainers are community members who have contributed significantly to the project through addressing issues, fixing bugs, and implementing enhancements/features.
Maintainers
Maintainers are community members who have had 10 or more PRs merged in umi or have spent a lot of time contributing to the umi community or addressing issues.
Contributors
Contributors are community members who have had 1 or more PRs merged in umi. If you are a contributor, you can contact me [sorrycc] to join the Contributor Group.
Community
LICENSE
No vulnerabilities found.
Reason
30 commit(s) and 5 issue activity found in the last 90 days -- score normalized to 10
Reason
no dangerous workflow patterns detected
Reason
license file detected
Details
- Info: project has a license file: LICENSE:0
- Info: FSF or OSI recognized license: MIT License: LICENSE:0
Reason
binaries present in source code
Details
- Warn: binary detected: packages/bundler-webpack/compiled/terser/mappings.wasm:1
Reason
Found 4/30 approved changesets -- score normalized to 1
Reason
no effort to earn an OpenSSF best practices badge detected
Reason
detected GitHub workflow tokens with excessive permissions
Details
- Warn: jobLevel 'checks' permission set to 'write': .github/workflows/coverage.yml:27
- Info: jobLevel 'contents' permission set to 'read': .github/workflows/coverage.yml:29
- Warn: no topLevel permission defined: .github/workflows/ci.yml:1
- Warn: no topLevel permission defined: .github/workflows/compressed-size.yml:1
- Warn: no topLevel permission defined: .github/workflows/coverage.yml:1
- Warn: no topLevel permission defined: .github/workflows/doc.yml:1
- Warn: no topLevel permission defined: .github/workflows/e2e-basic.yml:1
- Warn: no topLevel permission defined: .github/workflows/e2e-boilerplate.yml:1
- Warn: no topLevel permission defined: .github/workflows/e2e-mfsu.yml:1
- Warn: no topLevel permission defined: .github/workflows/e2e-qiankun.yml:1
- Warn: no topLevel permission defined: .github/workflows/e2e-vite.yml:1
- Warn: no topLevel permission defined: .github/workflows/emoji-helper.yml:1
- Warn: no topLevel permission defined: .github/workflows/issue-checker.yml:1
- Warn: no topLevel permission defined: .github/workflows/pr-checker.yml:1
Reason
security policy file not detected
Details
- Warn: no security policy file detected
- Warn: no security file to analyze
- Warn: no security file to analyze
- Warn: no security file to analyze
Reason
project is not fuzzed
Details
- Warn: no fuzzer integrations found
Reason
SAST tool is not run on all commits -- score normalized to 0
Details
- Warn: 0 commits out of 9 are checked with a SAST tool
Reason
dependency not pinned by hash detected -- score normalized to 0
Details
- Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/ci.yml:33: update your workflow using https://app.stepsecurity.io/secureworkflow/umijs/umi/ci.yml/master?enable=pin
- Warn: third-party GitHubAction not pinned by hash: .github/workflows/ci.yml:39: update your workflow using https://app.stepsecurity.io/secureworkflow/umijs/umi/ci.yml/master?enable=pin
- Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/ci.yml:43: update your workflow using https://app.stepsecurity.io/secureworkflow/umijs/umi/ci.yml/master?enable=pin
- Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/ci.yml:59: update your workflow using https://app.stepsecurity.io/secureworkflow/umijs/umi/ci.yml/master?enable=pin
- Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/ci.yml:75: update your workflow using https://app.stepsecurity.io/secureworkflow/umijs/umi/ci.yml/master?enable=pin
- Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/compressed-size.yml:25: update your workflow using https://app.stepsecurity.io/secureworkflow/umijs/umi/compressed-size.yml/master?enable=pin
- Warn: third-party GitHubAction not pinned by hash: .github/workflows/compressed-size.yml:28: update your workflow using https://app.stepsecurity.io/secureworkflow/umijs/umi/compressed-size.yml/master?enable=pin
- Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/compressed-size.yml:31: update your workflow using https://app.stepsecurity.io/secureworkflow/umijs/umi/compressed-size.yml/master?enable=pin
- Warn: third-party GitHubAction not pinned by hash: .github/workflows/compressed-size.yml:37: update your workflow using https://app.stepsecurity.io/secureworkflow/umijs/umi/compressed-size.yml/master?enable=pin
- Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/coverage.yml:36: update your workflow using https://app.stepsecurity.io/secureworkflow/umijs/umi/coverage.yml/master?enable=pin
- Warn: third-party GitHubAction not pinned by hash: .github/workflows/coverage.yml:41: update your workflow using https://app.stepsecurity.io/secureworkflow/umijs/umi/coverage.yml/master?enable=pin
- Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/coverage.yml:44: update your workflow using https://app.stepsecurity.io/secureworkflow/umijs/umi/coverage.yml/master?enable=pin
- Warn: third-party GitHubAction not pinned by hash: .github/workflows/coverage.yml:58: update your workflow using https://app.stepsecurity.io/secureworkflow/umijs/umi/coverage.yml/master?enable=pin
- Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/doc.yml:31: update your workflow using https://app.stepsecurity.io/secureworkflow/umijs/umi/doc.yml/master?enable=pin
- Warn: third-party GitHubAction not pinned by hash: .github/workflows/doc.yml:36: update your workflow using https://app.stepsecurity.io/secureworkflow/umijs/umi/doc.yml/master?enable=pin
- Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/doc.yml:39: update your workflow using https://app.stepsecurity.io/secureworkflow/umijs/umi/doc.yml/master?enable=pin
- Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/doc.yml:52: update your workflow using https://app.stepsecurity.io/secureworkflow/umijs/umi/doc.yml/master?enable=pin
- Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/e2e-basic.yml:35: update your workflow using https://app.stepsecurity.io/secureworkflow/umijs/umi/e2e-basic.yml/master?enable=pin
- Warn: third-party GitHubAction not pinned by hash: .github/workflows/e2e-basic.yml:40: update your workflow using https://app.stepsecurity.io/secureworkflow/umijs/umi/e2e-basic.yml/master?enable=pin
- Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/e2e-basic.yml:43: update your workflow using https://app.stepsecurity.io/secureworkflow/umijs/umi/e2e-basic.yml/master?enable=pin
- Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/e2e-basic.yml:62: update your workflow using https://app.stepsecurity.io/secureworkflow/umijs/umi/e2e-basic.yml/master?enable=pin
- Warn: third-party GitHubAction not pinned by hash: .github/workflows/e2e-basic.yml:80: update your workflow using https://app.stepsecurity.io/secureworkflow/umijs/umi/e2e-basic.yml/master?enable=pin
- Warn: third-party GitHubAction not pinned by hash: .github/workflows/e2e-basic.yml:92: update your workflow using https://app.stepsecurity.io/secureworkflow/umijs/umi/e2e-basic.yml/master?enable=pin
- Warn: third-party GitHubAction not pinned by hash: .github/workflows/e2e-basic.yml:110: update your workflow using https://app.stepsecurity.io/secureworkflow/umijs/umi/e2e-basic.yml/master?enable=pin
- Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/e2e-boilerplate.yml:34: update your workflow using https://app.stepsecurity.io/secureworkflow/umijs/umi/e2e-boilerplate.yml/master?enable=pin
- Warn: third-party GitHubAction not pinned by hash: .github/workflows/e2e-boilerplate.yml:39: update your workflow using https://app.stepsecurity.io/secureworkflow/umijs/umi/e2e-boilerplate.yml/master?enable=pin
- Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/e2e-boilerplate.yml:42: update your workflow using https://app.stepsecurity.io/secureworkflow/umijs/umi/e2e-boilerplate.yml/master?enable=pin
- Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/e2e-boilerplate.yml:61: update your workflow using https://app.stepsecurity.io/secureworkflow/umijs/umi/e2e-boilerplate.yml/master?enable=pin
- Warn: third-party GitHubAction not pinned by hash: .github/workflows/e2e-boilerplate.yml:82: update your workflow using https://app.stepsecurity.io/secureworkflow/umijs/umi/e2e-boilerplate.yml/master?enable=pin
- Warn: third-party GitHubAction not pinned by hash: .github/workflows/e2e-boilerplate.yml:93: update your workflow using https://app.stepsecurity.io/secureworkflow/umijs/umi/e2e-boilerplate.yml/master?enable=pin
- Warn: third-party GitHubAction not pinned by hash: .github/workflows/e2e-boilerplate.yml:104: update your workflow using https://app.stepsecurity.io/secureworkflow/umijs/umi/e2e-boilerplate.yml/master?enable=pin
- Warn: third-party GitHubAction not pinned by hash: .github/workflows/e2e-boilerplate.yml:115: update your workflow using https://app.stepsecurity.io/secureworkflow/umijs/umi/e2e-boilerplate.yml/master?enable=pin
- Warn: third-party GitHubAction not pinned by hash: .github/workflows/e2e-boilerplate.yml:126: update your workflow using https://app.stepsecurity.io/secureworkflow/umijs/umi/e2e-boilerplate.yml/master?enable=pin
- Warn: third-party GitHubAction not pinned by hash: .github/workflows/e2e-boilerplate.yml:137: update your workflow using https://app.stepsecurity.io/secureworkflow/umijs/umi/e2e-boilerplate.yml/master?enable=pin
- Warn: third-party GitHubAction not pinned by hash: .github/workflows/e2e-boilerplate.yml:149: update your workflow using https://app.stepsecurity.io/secureworkflow/umijs/umi/e2e-boilerplate.yml/master?enable=pin
- Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/e2e-mfsu.yml:35: update your workflow using https://app.stepsecurity.io/secureworkflow/umijs/umi/e2e-mfsu.yml/master?enable=pin
- Warn: third-party GitHubAction not pinned by hash: .github/workflows/e2e-mfsu.yml:40: update your workflow using https://app.stepsecurity.io/secureworkflow/umijs/umi/e2e-mfsu.yml/master?enable=pin
- Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/e2e-mfsu.yml:43: update your workflow using https://app.stepsecurity.io/secureworkflow/umijs/umi/e2e-mfsu.yml/master?enable=pin
- Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/e2e-mfsu.yml:62: update your workflow using https://app.stepsecurity.io/secureworkflow/umijs/umi/e2e-mfsu.yml/master?enable=pin
- Warn: third-party GitHubAction not pinned by hash: .github/workflows/e2e-mfsu.yml:84: update your workflow using https://app.stepsecurity.io/secureworkflow/umijs/umi/e2e-mfsu.yml/master?enable=pin
- Warn: third-party GitHubAction not pinned by hash: .github/workflows/e2e-mfsu.yml:102: update your workflow using https://app.stepsecurity.io/secureworkflow/umijs/umi/e2e-mfsu.yml/master?enable=pin
- Warn: third-party GitHubAction not pinned by hash: .github/workflows/e2e-mfsu.yml:120: update your workflow using https://app.stepsecurity.io/secureworkflow/umijs/umi/e2e-mfsu.yml/master?enable=pin
- Warn: third-party GitHubAction not pinned by hash: .github/workflows/e2e-mfsu.yml:131: update your workflow using https://app.stepsecurity.io/secureworkflow/umijs/umi/e2e-mfsu.yml/master?enable=pin
- Warn: third-party GitHubAction not pinned by hash: .github/workflows/e2e-mfsu.yml:142: update your workflow using https://app.stepsecurity.io/secureworkflow/umijs/umi/e2e-mfsu.yml/master?enable=pin
- Warn: third-party GitHubAction not pinned by hash: .github/workflows/e2e-mfsu.yml:153: update your workflow using https://app.stepsecurity.io/secureworkflow/umijs/umi/e2e-mfsu.yml/master?enable=pin
- Warn: third-party GitHubAction not pinned by hash: .github/workflows/e2e-mfsu.yml:165: update your workflow using https://app.stepsecurity.io/secureworkflow/umijs/umi/e2e-mfsu.yml/master?enable=pin
- Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/e2e-qiankun.yml:34: update your workflow using https://app.stepsecurity.io/secureworkflow/umijs/umi/e2e-qiankun.yml/master?enable=pin
- Warn: third-party GitHubAction not pinned by hash: .github/workflows/e2e-qiankun.yml:39: update your workflow using https://app.stepsecurity.io/secureworkflow/umijs/umi/e2e-qiankun.yml/master?enable=pin
- Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/e2e-qiankun.yml:42: update your workflow using https://app.stepsecurity.io/secureworkflow/umijs/umi/e2e-qiankun.yml/master?enable=pin
- Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/e2e-qiankun.yml:61: update your workflow using https://app.stepsecurity.io/secureworkflow/umijs/umi/e2e-qiankun.yml/master?enable=pin
- Warn: third-party GitHubAction not pinned by hash: .github/workflows/e2e-qiankun.yml:77: update your workflow using https://app.stepsecurity.io/secureworkflow/umijs/umi/e2e-qiankun.yml/master?enable=pin
- Warn: third-party GitHubAction not pinned by hash: .github/workflows/e2e-qiankun.yml:89: update your workflow using https://app.stepsecurity.io/secureworkflow/umijs/umi/e2e-qiankun.yml/master?enable=pin
- Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/e2e-vite.yml:34: update your workflow using https://app.stepsecurity.io/secureworkflow/umijs/umi/e2e-vite.yml/master?enable=pin
- Warn: third-party GitHubAction not pinned by hash: .github/workflows/e2e-vite.yml:39: update your workflow using https://app.stepsecurity.io/secureworkflow/umijs/umi/e2e-vite.yml/master?enable=pin
- Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/e2e-vite.yml:42: update your workflow using https://app.stepsecurity.io/secureworkflow/umijs/umi/e2e-vite.yml/master?enable=pin
- Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/e2e-vite.yml:61: update your workflow using https://app.stepsecurity.io/secureworkflow/umijs/umi/e2e-vite.yml/master?enable=pin
- Warn: third-party GitHubAction not pinned by hash: .github/workflows/e2e-vite.yml:78: update your workflow using https://app.stepsecurity.io/secureworkflow/umijs/umi/e2e-vite.yml/master?enable=pin
- Warn: third-party GitHubAction not pinned by hash: .github/workflows/e2e-vite.yml:90: update your workflow using https://app.stepsecurity.io/secureworkflow/umijs/umi/e2e-vite.yml/master?enable=pin
- Warn: third-party GitHubAction not pinned by hash: .github/workflows/emoji-helper.yml:11: update your workflow using https://app.stepsecurity.io/secureworkflow/umijs/umi/emoji-helper.yml/master?enable=pin
- Warn: third-party GitHubAction not pinned by hash: .github/workflows/issue-checker.yml:35: update your workflow using https://app.stepsecurity.io/secureworkflow/umijs/umi/issue-checker.yml/master?enable=pin
- Warn: third-party GitHubAction not pinned by hash: .github/workflows/issue-checker.yml:13: update your workflow using https://app.stepsecurity.io/secureworkflow/umijs/umi/issue-checker.yml/master?enable=pin
- Warn: third-party GitHubAction not pinned by hash: .github/workflows/issue-checker.yml:23: update your workflow using https://app.stepsecurity.io/secureworkflow/umijs/umi/issue-checker.yml/master?enable=pin
- Warn: third-party GitHubAction not pinned by hash: .github/workflows/issue-checker.yml:26: update your workflow using https://app.stepsecurity.io/secureworkflow/umijs/umi/issue-checker.yml/master?enable=pin
- Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/pr-checker.yml:17: update your workflow using https://app.stepsecurity.io/secureworkflow/umijs/umi/pr-checker.yml/master?enable=pin
- Warn: third-party GitHubAction not pinned by hash: .github/workflows/pr-checker.yml:20: update your workflow using https://app.stepsecurity.io/secureworkflow/umijs/umi/pr-checker.yml/master?enable=pin
- Warn: third-party GitHubAction not pinned by hash: .github/workflows/pr-checker.yml:45: update your workflow using https://app.stepsecurity.io/secureworkflow/umijs/umi/pr-checker.yml/master?enable=pin
- Warn: npmCommand not pinned by hash: .github/workflows/ci.yml:56
- Info: 0 out of 27 GitHub-owned GitHubAction dependencies pinned
- Info: 0 out of 39 third-party GitHubAction dependencies pinned
- Info: 0 out of 1 npmCommand dependencies pinned
Reason
87 existing vulnerabilities detected
Details
- Warn: Project is vulnerable to: GHSA-hpx4-r86g-5jrg
- Warn: Project is vulnerable to: GHSA-prr3-c3m5-p7q2
- Warn: Project is vulnerable to: GHSA-p2fh-2h23-6grg
- Warn: Project is vulnerable to: GHSA-67hx-6x53-jw92
- Warn: Project is vulnerable to: GHSA-p8p7-x288-28g6
- Warn: Project is vulnerable to: GHSA-pwfr-8pq7-x9qv
- Warn: Project is vulnerable to: GHSA-c2jc-4fpr-4vhg
- Warn: Project is vulnerable to: GHSA-4w2v-q235-vp99
- Warn: Project is vulnerable to: GHSA-cph5-m8f7-6c5x
- Warn: Project is vulnerable to: GHSA-wf5p-g6vw-rhxx
- Warn: Project is vulnerable to: GHSA-8hc4-vh64-cxmj
- Warn: Project is vulnerable to: GHSA-qwcr-r2fm-qrc7
- Warn: Project is vulnerable to: GHSA-grv7-fg5c-xmjg
- Warn: Project is vulnerable to: GHSA-pxg6-pf52-xh8x
- Warn: Project is vulnerable to: GHSA-3xgq-45jj-v275
- Warn: Project is vulnerable to: GHSA-36jr-mh4h-2g58
- Warn: Project is vulnerable to: GHSA-9vvw-cc9w-f27h
- Warn: Project is vulnerable to: GHSA-gxpj-cx7g-858c
- Warn: Project is vulnerable to: GHSA-wm7h-9275-46v2
- Warn: Project is vulnerable to: GHSA-ghr5-ch3p-vcr6
- Warn: Project is vulnerable to: GHSA-434g-2637-qmqr
- Warn: Project is vulnerable to: GHSA-49q7-c7j4-3p7m
- Warn: Project is vulnerable to: GHSA-977x-g7h5-7qgw
- Warn: Project is vulnerable to: GHSA-f7q4-pwc6-w24p
- Warn: Project is vulnerable to: GHSA-fc9h-whq2-v747
- Warn: Project is vulnerable to: GHSA-4gmj-3p3h-gm8h
- Warn: Project is vulnerable to: GHSA-rv95-896h-c2vc
- Warn: Project is vulnerable to: GHSA-qw6h-vgh9-j6wx
- Warn: Project is vulnerable to: GHSA-gjm5-83cw-p3p2
- Warn: Project is vulnerable to: GHSA-74fj-2j2h-c42q
- Warn: Project is vulnerable to: GHSA-pw2r-vq6v-hr8c
- Warn: Project is vulnerable to: GHSA-jchw-25xp-jwwc
- Warn: Project is vulnerable to: GHSA-cxjh-pqwp-8mfp
- Warn: Project is vulnerable to: GHSA-4q6p-r6v2-jvc5
- Warn: Project is vulnerable to: GHSA-8mmm-9v2q-x3f9
- Warn: Project is vulnerable to: GHSA-pfrx-2q88-qq97
- Warn: Project is vulnerable to: GHSA-rc47-6667-2j5j
- Warn: Project is vulnerable to: GHSA-33f9-j839-rf8h
- Warn: Project is vulnerable to: GHSA-c36v-fmgq-m8hx
- Warn: Project is vulnerable to: GHSA-78xj-cgh5-2h22
- Warn: Project is vulnerable to: GHSA-2p57-rm9w-gvfp
- Warn: Project is vulnerable to: GHSA-9c47-m6qq-7p4h
- Warn: Project is vulnerable to: GHSA-76p3-8jx3-jpfq
- Warn: Project is vulnerable to: GHSA-3rfm-jhwj-7488
- Warn: Project is vulnerable to: GHSA-hhq3-ff78-jv3g
- Warn: Project is vulnerable to: GHSA-p6mc-m468-83gw
- Warn: Project is vulnerable to: GHSA-82v2-mx6x-wq7q
- Warn: Project is vulnerable to: GHSA-ch52-vgq2-943f
- Warn: Project is vulnerable to: GHSA-5v2h-r2cx-5xgj
- Warn: Project is vulnerable to: GHSA-rrrm-qjm4-v8hf
- Warn: Project is vulnerable to: GHSA-952p-6rrq-rcjv
- Warn: Project is vulnerable to: GHSA-f8q6-p94x-37v3
- Warn: Project is vulnerable to: GHSA-mh8j-9jvh-gjf6
- Warn: Project is vulnerable to: GHSA-r683-j2x4-v87g
- Warn: Project is vulnerable to: GHSA-w7rc-rwvf-8q5r
- Warn: Project is vulnerable to: GHSA-rp65-9cf3-cjxr
- Warn: Project is vulnerable to: GHSA-x77j-w7wf-fjmw
- Warn: Project is vulnerable to: GHSA-9wv6-86v2-598j
- Warn: Project is vulnerable to: GHSA-566m-qj78-rww5
- Warn: Project is vulnerable to: GHSA-7fh5-64p2-3v2j
- Warn: Project is vulnerable to: GHSA-hrpp-h998-j3pp
- Warn: Project is vulnerable to: GHSA-gcx4-mw62-g8wm
- Warn: Project is vulnerable to: GHSA-c2qf-rxjj-qqgw
- Warn: Project is vulnerable to: GHSA-m6fv-jmcg-4jfg
- Warn: Project is vulnerable to: GHSA-cm22-4g7w-348p
- Warn: Project is vulnerable to: GHSA-325j-24f4-qv5x
- Warn: Project is vulnerable to: GHSA-vx3p-948g-6vhq
- Warn: Project is vulnerable to: GHSA-f5x3-32g6-xq36
- Warn: Project is vulnerable to: GHSA-72xf-g2v4-qvf3
- Warn: Project is vulnerable to: GHSA-fhg7-m89q-25r3
- Warn: Project is vulnerable to: GHSA-cf4h-3jhx-xvhq
- Warn: Project is vulnerable to: GHSA-5r9g-qh6m-jxff
- Warn: Project is vulnerable to: GHSA-r6ch-mqf9-qc9w
- Warn: Project is vulnerable to: GHSA-wqq4-5wpv-mx2g
- Warn: Project is vulnerable to: GHSA-3787-6prv-h9w3
- Warn: Project is vulnerable to: GHSA-9qxr-qj54-h672
- Warn: Project is vulnerable to: GHSA-m4v8-wqvr-p9f7
- Warn: Project is vulnerable to: GHSA-353f-5xf4-qw67
- Warn: Project is vulnerable to: GHSA-c24v-8rfc-w8vw
- Warn: Project is vulnerable to: GHSA-8jhw-289h-jh2g
- Warn: Project is vulnerable to: GHSA-64vr-g452-qvp3
- Warn: Project is vulnerable to: GHSA-9cwx-2883-4wfx
- Warn: Project is vulnerable to: GHSA-j8xg-fqg3-53r7
- Warn: Project is vulnerable to: GHSA-3h5v-q93c-6h6q
- Warn: Project is vulnerable to: GHSA-f9xv-q969-pqx4
- Warn: Project is vulnerable to: GHSA-p9pc-299p-vxgp
- Warn: Project is vulnerable to: GHSA-m95q-7qp3-xv42
Score
3.8
/10
Last Scanned on 2024-11-18
The Open Source Security Foundation is a cross-industry collaboration to improve the security of open source software (OSS). The Scorecard provides security health metrics for open source projects.
Learn More