Gathering detailed insights and metrics for umi
Gathering detailed insights and metrics for umi
Installations
npm install umiDeveloper Guide
BETA
Typescript
Yes
Module System
CommonJS
Min. Node Version
>=14
Node Version
20.18.1
NPM Version
10.8.2
Releases
538
Languages
7
TypeScript
Smarty
JavaScript
HTML
CSS
Less
Vue
TypeScript (92.46%)
Smarty (3.32%)
JavaScript (2.68%)
HTML (0.94%)
CSS (0.5%)
Less (0.07%)
Vue (0.04%)
Developer
Download Statistics
Total Downloads
0
Last Day
0
Last Week
0
Last Month
0
Last Year
0
GitHub Statistics
MIT License
15,797 Stars
7,620 Commits
2,674 Forks
257 Watchers
243 Branches
486 Contributors
Updated on Jul 18, 2025
Maintainers
8
Package Meta Information
Latest Version
4.4.11
Package Id
umi@4.4.11
Unpacked Size
43.88 kB
Size
11.52 kB
File Count
47
NPM Version
10.8.2
Node Version
20.18.1
Published on
May 15, 2025
Total Downloads
Cumulative downloads
Total Downloads
NaN
Last Day
0%
NaN
Compared to previous day
Last Week
0%
NaN
Compared to previous week
Last Month
0%
NaN
Compared to previous month
Last Year
0%
NaN
Compared to previous year
Weekly Downloads
Monthly Downloads
Yearly Downloads
umi
See our website umijs for more information.
No vulnerabilities found.
Reason
12 commit(s) and 1 issue activity found in the last 90 days -- score normalized to 10
Reason
no dangerous workflow patterns detected
Reason
license file detected
Details
- Info: project has a license file: LICENSE:0
- Info: FSF or OSI recognized license: MIT License: LICENSE:0
Reason
binaries present in source code
Details
- Warn: binary detected: packages/bundler-webpack/compiled/terser/mappings.wasm:1
Reason
Found 10/30 approved changesets -- score normalized to 3
Reason
no effort to earn an OpenSSF best practices badge detected
Reason
detected GitHub workflow tokens with excessive permissions
Details
- Info: jobLevel 'contents' permission set to 'read': .github/workflows/coverage.yml:29
- Warn: jobLevel 'checks' permission set to 'write': .github/workflows/coverage.yml:27
- Warn: no topLevel permission defined: .github/workflows/ci.yml:1
- Warn: no topLevel permission defined: .github/workflows/compressed-size.yml:1
- Warn: no topLevel permission defined: .github/workflows/coverage.yml:1
- Warn: no topLevel permission defined: .github/workflows/doc.yml:1
- Warn: no topLevel permission defined: .github/workflows/e2e-basic.yml:1
- Warn: no topLevel permission defined: .github/workflows/e2e-boilerplate.yml:1
- Warn: no topLevel permission defined: .github/workflows/e2e-mfsu.yml:1
- Warn: no topLevel permission defined: .github/workflows/e2e-qiankun.yml:1
- Warn: no topLevel permission defined: .github/workflows/e2e-vite.yml:1
- Warn: no topLevel permission defined: .github/workflows/emoji-helper.yml:1
- Warn: no topLevel permission defined: .github/workflows/issue-checker.yml:1
- Warn: no topLevel permission defined: .github/workflows/pr-checker.yml:1
Reason
security policy file not detected
Details
- Warn: no security policy file detected
- Warn: no security file to analyze
- Warn: no security file to analyze
- Warn: no security file to analyze
Reason
SAST tool is not run on all commits -- score normalized to 0
Details
- Warn: 0 commits out of 14 are checked with a SAST tool
Reason
project is not fuzzed
Details
- Warn: no fuzzer integrations found
Reason
dependency not pinned by hash detected -- score normalized to 0
Details
- Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/ci.yml:33: update your workflow using https://app.stepsecurity.io/secureworkflow/umijs/umi/ci.yml/master?enable=pin
- Warn: third-party GitHubAction not pinned by hash: .github/workflows/ci.yml:39: update your workflow using https://app.stepsecurity.io/secureworkflow/umijs/umi/ci.yml/master?enable=pin
- Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/ci.yml:43: update your workflow using https://app.stepsecurity.io/secureworkflow/umijs/umi/ci.yml/master?enable=pin
- Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/ci.yml:59: update your workflow using https://app.stepsecurity.io/secureworkflow/umijs/umi/ci.yml/master?enable=pin
- Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/ci.yml:75: update your workflow using https://app.stepsecurity.io/secureworkflow/umijs/umi/ci.yml/master?enable=pin
- Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/compressed-size.yml:25: update your workflow using https://app.stepsecurity.io/secureworkflow/umijs/umi/compressed-size.yml/master?enable=pin
- Warn: third-party GitHubAction not pinned by hash: .github/workflows/compressed-size.yml:28: update your workflow using https://app.stepsecurity.io/secureworkflow/umijs/umi/compressed-size.yml/master?enable=pin
- Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/compressed-size.yml:31: update your workflow using https://app.stepsecurity.io/secureworkflow/umijs/umi/compressed-size.yml/master?enable=pin
- Warn: third-party GitHubAction not pinned by hash: .github/workflows/compressed-size.yml:37: update your workflow using https://app.stepsecurity.io/secureworkflow/umijs/umi/compressed-size.yml/master?enable=pin
- Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/coverage.yml:36: update your workflow using https://app.stepsecurity.io/secureworkflow/umijs/umi/coverage.yml/master?enable=pin
- Warn: third-party GitHubAction not pinned by hash: .github/workflows/coverage.yml:41: update your workflow using https://app.stepsecurity.io/secureworkflow/umijs/umi/coverage.yml/master?enable=pin
- Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/coverage.yml:44: update your workflow using https://app.stepsecurity.io/secureworkflow/umijs/umi/coverage.yml/master?enable=pin
- Warn: third-party GitHubAction not pinned by hash: .github/workflows/coverage.yml:58: update your workflow using https://app.stepsecurity.io/secureworkflow/umijs/umi/coverage.yml/master?enable=pin
- Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/doc.yml:31: update your workflow using https://app.stepsecurity.io/secureworkflow/umijs/umi/doc.yml/master?enable=pin
- Warn: third-party GitHubAction not pinned by hash: .github/workflows/doc.yml:36: update your workflow using https://app.stepsecurity.io/secureworkflow/umijs/umi/doc.yml/master?enable=pin
- Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/doc.yml:39: update your workflow using https://app.stepsecurity.io/secureworkflow/umijs/umi/doc.yml/master?enable=pin
- Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/doc.yml:52: update your workflow using https://app.stepsecurity.io/secureworkflow/umijs/umi/doc.yml/master?enable=pin
- Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/e2e-basic.yml:35: update your workflow using https://app.stepsecurity.io/secureworkflow/umijs/umi/e2e-basic.yml/master?enable=pin
- Warn: third-party GitHubAction not pinned by hash: .github/workflows/e2e-basic.yml:40: update your workflow using https://app.stepsecurity.io/secureworkflow/umijs/umi/e2e-basic.yml/master?enable=pin
- Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/e2e-basic.yml:43: update your workflow using https://app.stepsecurity.io/secureworkflow/umijs/umi/e2e-basic.yml/master?enable=pin
- Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/e2e-basic.yml:62: update your workflow using https://app.stepsecurity.io/secureworkflow/umijs/umi/e2e-basic.yml/master?enable=pin
- Warn: third-party GitHubAction not pinned by hash: .github/workflows/e2e-basic.yml:80: update your workflow using https://app.stepsecurity.io/secureworkflow/umijs/umi/e2e-basic.yml/master?enable=pin
- Warn: third-party GitHubAction not pinned by hash: .github/workflows/e2e-basic.yml:92: update your workflow using https://app.stepsecurity.io/secureworkflow/umijs/umi/e2e-basic.yml/master?enable=pin
- Warn: third-party GitHubAction not pinned by hash: .github/workflows/e2e-basic.yml:110: update your workflow using https://app.stepsecurity.io/secureworkflow/umijs/umi/e2e-basic.yml/master?enable=pin
- Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/e2e-boilerplate.yml:34: update your workflow using https://app.stepsecurity.io/secureworkflow/umijs/umi/e2e-boilerplate.yml/master?enable=pin
- Warn: third-party GitHubAction not pinned by hash: .github/workflows/e2e-boilerplate.yml:39: update your workflow using https://app.stepsecurity.io/secureworkflow/umijs/umi/e2e-boilerplate.yml/master?enable=pin
- Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/e2e-boilerplate.yml:42: update your workflow using https://app.stepsecurity.io/secureworkflow/umijs/umi/e2e-boilerplate.yml/master?enable=pin
- Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/e2e-boilerplate.yml:61: update your workflow using https://app.stepsecurity.io/secureworkflow/umijs/umi/e2e-boilerplate.yml/master?enable=pin
- Warn: third-party GitHubAction not pinned by hash: .github/workflows/e2e-boilerplate.yml:82: update your workflow using https://app.stepsecurity.io/secureworkflow/umijs/umi/e2e-boilerplate.yml/master?enable=pin
- Warn: third-party GitHubAction not pinned by hash: .github/workflows/e2e-boilerplate.yml:93: update your workflow using https://app.stepsecurity.io/secureworkflow/umijs/umi/e2e-boilerplate.yml/master?enable=pin
- Warn: third-party GitHubAction not pinned by hash: .github/workflows/e2e-boilerplate.yml:104: update your workflow using https://app.stepsecurity.io/secureworkflow/umijs/umi/e2e-boilerplate.yml/master?enable=pin
- Warn: third-party GitHubAction not pinned by hash: .github/workflows/e2e-boilerplate.yml:115: update your workflow using https://app.stepsecurity.io/secureworkflow/umijs/umi/e2e-boilerplate.yml/master?enable=pin
- Warn: third-party GitHubAction not pinned by hash: .github/workflows/e2e-boilerplate.yml:126: update your workflow using https://app.stepsecurity.io/secureworkflow/umijs/umi/e2e-boilerplate.yml/master?enable=pin
- Warn: third-party GitHubAction not pinned by hash: .github/workflows/e2e-boilerplate.yml:137: update your workflow using https://app.stepsecurity.io/secureworkflow/umijs/umi/e2e-boilerplate.yml/master?enable=pin
- Warn: third-party GitHubAction not pinned by hash: .github/workflows/e2e-boilerplate.yml:149: update your workflow using https://app.stepsecurity.io/secureworkflow/umijs/umi/e2e-boilerplate.yml/master?enable=pin
- Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/e2e-mfsu.yml:35: update your workflow using https://app.stepsecurity.io/secureworkflow/umijs/umi/e2e-mfsu.yml/master?enable=pin
- Warn: third-party GitHubAction not pinned by hash: .github/workflows/e2e-mfsu.yml:40: update your workflow using https://app.stepsecurity.io/secureworkflow/umijs/umi/e2e-mfsu.yml/master?enable=pin
- Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/e2e-mfsu.yml:43: update your workflow using https://app.stepsecurity.io/secureworkflow/umijs/umi/e2e-mfsu.yml/master?enable=pin
- Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/e2e-mfsu.yml:62: update your workflow using https://app.stepsecurity.io/secureworkflow/umijs/umi/e2e-mfsu.yml/master?enable=pin
- Warn: third-party GitHubAction not pinned by hash: .github/workflows/e2e-mfsu.yml:84: update your workflow using https://app.stepsecurity.io/secureworkflow/umijs/umi/e2e-mfsu.yml/master?enable=pin
- Warn: third-party GitHubAction not pinned by hash: .github/workflows/e2e-mfsu.yml:102: update your workflow using https://app.stepsecurity.io/secureworkflow/umijs/umi/e2e-mfsu.yml/master?enable=pin
- Warn: third-party GitHubAction not pinned by hash: .github/workflows/e2e-mfsu.yml:120: update your workflow using https://app.stepsecurity.io/secureworkflow/umijs/umi/e2e-mfsu.yml/master?enable=pin
- Warn: third-party GitHubAction not pinned by hash: .github/workflows/e2e-mfsu.yml:131: update your workflow using https://app.stepsecurity.io/secureworkflow/umijs/umi/e2e-mfsu.yml/master?enable=pin
- Warn: third-party GitHubAction not pinned by hash: .github/workflows/e2e-mfsu.yml:142: update your workflow using https://app.stepsecurity.io/secureworkflow/umijs/umi/e2e-mfsu.yml/master?enable=pin
- Warn: third-party GitHubAction not pinned by hash: .github/workflows/e2e-mfsu.yml:153: update your workflow using https://app.stepsecurity.io/secureworkflow/umijs/umi/e2e-mfsu.yml/master?enable=pin
- Warn: third-party GitHubAction not pinned by hash: .github/workflows/e2e-mfsu.yml:165: update your workflow using https://app.stepsecurity.io/secureworkflow/umijs/umi/e2e-mfsu.yml/master?enable=pin
- Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/e2e-qiankun.yml:34: update your workflow using https://app.stepsecurity.io/secureworkflow/umijs/umi/e2e-qiankun.yml/master?enable=pin
- Warn: third-party GitHubAction not pinned by hash: .github/workflows/e2e-qiankun.yml:39: update your workflow using https://app.stepsecurity.io/secureworkflow/umijs/umi/e2e-qiankun.yml/master?enable=pin
- Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/e2e-qiankun.yml:42: update your workflow using https://app.stepsecurity.io/secureworkflow/umijs/umi/e2e-qiankun.yml/master?enable=pin
- Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/e2e-qiankun.yml:61: update your workflow using https://app.stepsecurity.io/secureworkflow/umijs/umi/e2e-qiankun.yml/master?enable=pin
- Warn: third-party GitHubAction not pinned by hash: .github/workflows/e2e-qiankun.yml:77: update your workflow using https://app.stepsecurity.io/secureworkflow/umijs/umi/e2e-qiankun.yml/master?enable=pin
- Warn: third-party GitHubAction not pinned by hash: .github/workflows/e2e-qiankun.yml:89: update your workflow using https://app.stepsecurity.io/secureworkflow/umijs/umi/e2e-qiankun.yml/master?enable=pin
- Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/e2e-vite.yml:34: update your workflow using https://app.stepsecurity.io/secureworkflow/umijs/umi/e2e-vite.yml/master?enable=pin
- Warn: third-party GitHubAction not pinned by hash: .github/workflows/e2e-vite.yml:39: update your workflow using https://app.stepsecurity.io/secureworkflow/umijs/umi/e2e-vite.yml/master?enable=pin
- Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/e2e-vite.yml:42: update your workflow using https://app.stepsecurity.io/secureworkflow/umijs/umi/e2e-vite.yml/master?enable=pin
- Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/e2e-vite.yml:61: update your workflow using https://app.stepsecurity.io/secureworkflow/umijs/umi/e2e-vite.yml/master?enable=pin
- Warn: third-party GitHubAction not pinned by hash: .github/workflows/e2e-vite.yml:78: update your workflow using https://app.stepsecurity.io/secureworkflow/umijs/umi/e2e-vite.yml/master?enable=pin
- Warn: third-party GitHubAction not pinned by hash: .github/workflows/e2e-vite.yml:90: update your workflow using https://app.stepsecurity.io/secureworkflow/umijs/umi/e2e-vite.yml/master?enable=pin
- Warn: third-party GitHubAction not pinned by hash: .github/workflows/emoji-helper.yml:11: update your workflow using https://app.stepsecurity.io/secureworkflow/umijs/umi/emoji-helper.yml/master?enable=pin
- Warn: third-party GitHubAction not pinned by hash: .github/workflows/issue-checker.yml:13: update your workflow using https://app.stepsecurity.io/secureworkflow/umijs/umi/issue-checker.yml/master?enable=pin
- Warn: third-party GitHubAction not pinned by hash: .github/workflows/issue-checker.yml:23: update your workflow using https://app.stepsecurity.io/secureworkflow/umijs/umi/issue-checker.yml/master?enable=pin
- Warn: third-party GitHubAction not pinned by hash: .github/workflows/issue-checker.yml:26: update your workflow using https://app.stepsecurity.io/secureworkflow/umijs/umi/issue-checker.yml/master?enable=pin
- Warn: third-party GitHubAction not pinned by hash: .github/workflows/issue-checker.yml:35: update your workflow using https://app.stepsecurity.io/secureworkflow/umijs/umi/issue-checker.yml/master?enable=pin
- Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/pr-checker.yml:17: update your workflow using https://app.stepsecurity.io/secureworkflow/umijs/umi/pr-checker.yml/master?enable=pin
- Warn: third-party GitHubAction not pinned by hash: .github/workflows/pr-checker.yml:20: update your workflow using https://app.stepsecurity.io/secureworkflow/umijs/umi/pr-checker.yml/master?enable=pin
- Warn: third-party GitHubAction not pinned by hash: .github/workflows/pr-checker.yml:45: update your workflow using https://app.stepsecurity.io/secureworkflow/umijs/umi/pr-checker.yml/master?enable=pin
- Warn: npmCommand not pinned by hash: .github/workflows/ci.yml:56
- Info: 0 out of 27 GitHub-owned GitHubAction dependencies pinned
- Info: 0 out of 39 third-party GitHubAction dependencies pinned
- Info: 0 out of 1 npmCommand dependencies pinned
Reason
114 existing vulnerabilities detected
Details
- Warn: Project is vulnerable to: GHSA-hpx4-r86g-5jrg
- Warn: Project is vulnerable to: GHSA-prr3-c3m5-p7q2
- Warn: Project is vulnerable to: GHSA-p2fh-2h23-6grg
- Warn: Project is vulnerable to: GHSA-968p-4wvh-cqc8
- Warn: Project is vulnerable to: GHSA-67hx-6x53-jw92
- Warn: Project is vulnerable to: GHSA-p8p7-x288-28g6
- Warn: Project is vulnerable to: GHSA-rmvr-2pp2-xj38
- Warn: Project is vulnerable to: GHSA-xx4v-prfh-6cgc
- Warn: Project is vulnerable to: GHSA-pwfr-8pq7-x9qv
- Warn: Project is vulnerable to: GHSA-c2jc-4fpr-4vhg
- Warn: Project is vulnerable to: GHSA-4w2v-q235-vp99
- Warn: Project is vulnerable to: GHSA-cph5-m8f7-6c5x
- Warn: Project is vulnerable to: GHSA-wf5p-g6vw-rhxx
- Warn: Project is vulnerable to: GHSA-jr5f-v2jv-69x6
- Warn: Project is vulnerable to: GHSA-8hc4-vh64-cxmj
- Warn: Project is vulnerable to: GHSA-qwcr-r2fm-qrc7
- Warn: Project is vulnerable to: GHSA-v6h2-p8h4-qcjw
- Warn: Project is vulnerable to: GHSA-grv7-fg5c-xmjg
- Warn: Project is vulnerable to: GHSA-pxg6-pf52-xh8x
- Warn: Project is vulnerable to: GHSA-3xgq-45jj-v275
- Warn: Project is vulnerable to: GHSA-36jr-mh4h-2g58
- Warn: Project is vulnerable to: GHSA-9vvw-cc9w-f27h
- Warn: Project is vulnerable to: GHSA-gxpj-cx7g-858c
- Warn: Project is vulnerable to: GHSA-wm7h-9275-46v2
- Warn: Project is vulnerable to: GHSA-ghr5-ch3p-vcr6
- Warn: Project is vulnerable to: GHSA-434g-2637-qmqr
- Warn: Project is vulnerable to: GHSA-49q7-c7j4-3p7m
- Warn: Project is vulnerable to: GHSA-977x-g7h5-7qgw
- Warn: Project is vulnerable to: GHSA-f7q4-pwc6-w24p
- Warn: Project is vulnerable to: GHSA-fc9h-whq2-v747
- Warn: Project is vulnerable to: GHSA-vjh7-7g9h-fjfh
- Warn: Project is vulnerable to: GHSA-4gmj-3p3h-gm8h
- Warn: Project is vulnerable to: GHSA-67mh-4wv8-2f99
- Warn: Project is vulnerable to: GHSA-rv95-896h-c2vc
- Warn: Project is vulnerable to: GHSA-qw6h-vgh9-j6wx
- Warn: Project is vulnerable to: GHSA-gjm5-83cw-p3p2
- Warn: Project is vulnerable to: GHSA-74fj-2j2h-c42q
- Warn: Project is vulnerable to: GHSA-pw2r-vq6v-hr8c
- Warn: Project is vulnerable to: GHSA-jchw-25xp-jwwc
- Warn: Project is vulnerable to: GHSA-cxjh-pqwp-8mfp
- Warn: Project is vulnerable to: GHSA-4q6p-r6v2-jvc5
- Warn: Project is vulnerable to: GHSA-8mmm-9v2q-x3f9
- Warn: Project is vulnerable to: GHSA-pfrx-2q88-qq97
- Warn: Project is vulnerable to: GHSA-rc47-6667-2j5j
- Warn: Project is vulnerable to: GHSA-33f9-j839-rf8h
- Warn: Project is vulnerable to: GHSA-c36v-fmgq-m8hx
- Warn: Project is vulnerable to: GHSA-78xj-cgh5-2h22
- Warn: Project is vulnerable to: GHSA-2p57-rm9w-gvfp
- Warn: Project is vulnerable to: GHSA-9c47-m6qq-7p4h
- Warn: Project is vulnerable to: GHSA-76p3-8jx3-jpfq
- Warn: Project is vulnerable to: GHSA-3rfm-jhwj-7488
- Warn: Project is vulnerable to: GHSA-hhq3-ff78-jv3g
- Warn: Project is vulnerable to: GHSA-p6mc-m468-83gw
- Warn: Project is vulnerable to: GHSA-82v2-mx6x-wq7q
- Warn: Project is vulnerable to: GHSA-ch52-vgq2-943f
- Warn: Project is vulnerable to: GHSA-5v2h-r2cx-5xgj
- Warn: Project is vulnerable to: GHSA-rrrm-qjm4-v8hf
- Warn: Project is vulnerable to: GHSA-952p-6rrq-rcjv
- Warn: Project is vulnerable to: GHSA-f8q6-p94x-37v3
- Warn: Project is vulnerable to: GHSA-mh8j-9jvh-gjf6
- Warn: Project is vulnerable to: GHSA-44fp-w29j-9vj5
- Warn: Project is vulnerable to: GHSA-4pg4-qvpc-4q3h
- Warn: Project is vulnerable to: GHSA-g5hg-p3ph-g8qg
- Warn: Project is vulnerable to: GHSA-mwcw-c2x4-8c55
- Warn: Project is vulnerable to: GHSA-r683-j2x4-v87g
- Warn: Project is vulnerable to: GHSA-w7rc-rwvf-8q5r
- Warn: Project is vulnerable to: GHSA-rp65-9cf3-cjxr
- Warn: Project is vulnerable to: GHSA-x77j-w7wf-fjmw
- Warn: Project is vulnerable to: GHSA-8g77-54rh-46hx
- Warn: Project is vulnerable to: GHSA-9wv6-86v2-598j
- Warn: Project is vulnerable to: GHSA-rhx6-c78j-4q9w
- Warn: Project is vulnerable to: GHSA-h7cp-r72f-jxh6
- Warn: Project is vulnerable to: GHSA-v62p-rq8g-8h59
- Warn: Project is vulnerable to: GHSA-566m-qj78-rww5
- Warn: Project is vulnerable to: GHSA-7fh5-64p2-3v2j
- Warn: Project is vulnerable to: GHSA-x7hr-w5r2-h6wg
- Warn: Project is vulnerable to: GHSA-hrpp-h998-j3pp
- Warn: Project is vulnerable to: GHSA-gcx4-mw62-g8wm
- Warn: Project is vulnerable to: GHSA-c2qf-rxjj-qqgw
- Warn: Project is vulnerable to: GHSA-m6fv-jmcg-4jfg
- Warn: Project is vulnerable to: GHSA-76p7-773f-r4q5
- Warn: Project is vulnerable to: GHSA-cm22-4g7w-348p
- Warn: Project is vulnerable to: GHSA-325j-24f4-qv5x
- Warn: Project is vulnerable to: GHSA-vx3p-948g-6vhq
- Warn: Project is vulnerable to: GHSA-f5x3-32g6-xq36
- Warn: Project is vulnerable to: GHSA-pq67-2wwv-3xjx
- Warn: Project is vulnerable to: GHSA-8cj5-5rvv-wf4v
- Warn: Project is vulnerable to: GHSA-72xf-g2v4-qvf3
- Warn: Project is vulnerable to: GHSA-fhg7-m89q-25r3
- Warn: Project is vulnerable to: GHSA-cf4h-3jhx-xvhq
- Warn: Project is vulnerable to: GHSA-5r9g-qh6m-jxff
- Warn: Project is vulnerable to: GHSA-r6ch-mqf9-qc9w
- Warn: Project is vulnerable to: GHSA-wqq4-5wpv-mx2g
- Warn: Project is vulnerable to: GHSA-3787-6prv-h9w3
- Warn: Project is vulnerable to: GHSA-9qxr-qj54-h672
- Warn: Project is vulnerable to: GHSA-m4v8-wqvr-p9f7
- Warn: Project is vulnerable to: GHSA-c76h-2ccp-4975
- Warn: Project is vulnerable to: GHSA-cxrh-j4jr-qwg3
- Warn: Project is vulnerable to: GHSA-353f-5xf4-qw67
- Warn: Project is vulnerable to: GHSA-c24v-8rfc-w8vw
- Warn: Project is vulnerable to: GHSA-8jhw-289h-jh2g
- Warn: Project is vulnerable to: GHSA-64vr-g452-qvp3
- Warn: Project is vulnerable to: GHSA-9cwx-2883-4wfx
- Warn: Project is vulnerable to: GHSA-vg6x-rcgg-rjx6
- Warn: Project is vulnerable to: GHSA-x574-m823-4x7w
- Warn: Project is vulnerable to: GHSA-4r4m-qw57-chr8
- Warn: Project is vulnerable to: GHSA-xcj6-pq6g-qj4x
- Warn: Project is vulnerable to: GHSA-356w-63v5-8wf4
- Warn: Project is vulnerable to: GHSA-859w-5945-r5v3
- Warn: Project is vulnerable to: GHSA-j8xg-fqg3-53r7
- Warn: Project is vulnerable to: GHSA-3h5v-q93c-6h6q
- Warn: Project is vulnerable to: GHSA-f9xv-q969-pqx4
- Warn: Project is vulnerable to: GHSA-p9pc-299p-vxgp
- Warn: Project is vulnerable to: GHSA-m95q-7qp3-xv42
Score
4
/10
Last Scanned on 2025-07-07
The Open Source Security Foundation is a cross-industry collaboration to improve the security of open source software (OSS). The Scorecard provides security health metrics for open source projects.
Learn More