search

MetaMask / jazzicon

Jazzy deterministic identicons for a more entertaining future
https://metamask.github.io/jazzicon/
ISC License
76 stars 26 forks source link

Add a way to generate demo page #17

Closed mcmire closed 1 year ago

mcmire commented 1 year ago

Add a build-demo script which will build the demo page to the demo-build/ directory. This directory can then be copied to a gh-pages branch so that we can publish the demo page to GitHub Pages.

Also, considering that we also need an HTML file to build the demo page, move that along with the JavaScript file to the demo/ directory.

socket-security[bot] commented 1 year ago

New dependency changes detected. Learn more about Socket for GitHub β†—οΈŽ

🚨 Potential security issues found in this pull request. To accept the risk, merge this PR and you will not be notified again.

Bot Commands

To ignore an alert, reply with a comment starting with @SocketSecurity ignore followed by a space separated list of package-name@version specifiers. e.g. @SocketSecurity ignore foo@1.0.0 bar@* or ignore all packages with @SocketSecurity ignore-all

  • @SocketSecurity ignore inline-source-map@0.6.2
  • @SocketSecurity ignore stream-splicer@2.0.1
  • @SocketSecurity ignore tty-browserify@0.0.1
  • @SocketSecurity ignore os-browserify@0.3.0
  • @SocketSecurity ignore for-each@0.3.3
  • @SocketSecurity ignore defined@1.0.1
  • @SocketSecurity ignore console-browserify@1.2.0
  • @SocketSecurity ignore md5.js@1.3.5
  • @SocketSecurity ignore source-map@0.5.7
  • @SocketSecurity ignore deps-sort@2.0.1
  • @SocketSecurity ignore domain-browser@1.2.0
  • @SocketSecurity ignore wrappy@1.0.2
  • @SocketSecurity ignore browserify-zlib@0.2.0
  • @SocketSecurity ignore des.js@1.0.1
  • @SocketSecurity ignore function-bind@1.1.1
  • @SocketSecurity ignore asn1.js@5.4.1
  • @SocketSecurity ignore brorand@1.1.0
  • @SocketSecurity ignore simple-concat@1.0.1
  • @SocketSecurity ignore path-parse@1.0.7
  • @SocketSecurity ignore supports-preserve-symlinks-flag@1.0.0
  • @SocketSecurity ignore buffer-xor@1.0.3
  • @SocketSecurity ignore balanced-match@1.0.2
  • @SocketSecurity ignore available-typed-arrays@1.0.5
  • @SocketSecurity ignore labeled-stream-splicer@2.0.2
  • @SocketSecurity ignore buffer@5.2.1
  • @SocketSecurity ignore timers-browserify@1.4.2
  • @SocketSecurity ignore stream-http@3.2.0
  • @SocketSecurity ignore through@2.2.7
  • @SocketSecurity ignore miller-rabin@4.0.1
  • @SocketSecurity ignore once@1.4.0
  • @SocketSecurity ignore is-generator-function@1.0.10
  • @SocketSecurity ignore has-symbols@1.0.3
  • @SocketSecurity ignore call-bind@1.0.2
  • @SocketSecurity ignore events@3.3.0
  • @SocketSecurity ignore vm-browserify@1.1.2
  • @SocketSecurity ignore browserify-des@1.0.2
  • @SocketSecurity ignore browserify-cipher@1.0.1
  • @SocketSecurity ignore create-ecdh@4.0.4
  • @SocketSecurity ignore object-assign@4.1.1
  • @SocketSecurity ignore isarray@1.0.0
  • @SocketSecurity ignore is-arguments@1.1.1
  • @SocketSecurity ignore brace-expansion@1.1.11
  • @SocketSecurity ignore has-tostringtag@1.0.0
  • @SocketSecurity ignore xtend@4.0.2
  • @SocketSecurity ignore is-buffer@1.1.6
  • @SocketSecurity ignore lodash.memoize@3.0.4
  • @SocketSecurity ignore stream-browserify@3.0.0
  • @SocketSecurity ignore get-assigned-identifiers@1.2.0
  • @SocketSecurity ignore inflight@1.0.6
  • @SocketSecurity ignore evp_bytestokey@1.0.3

Ignoring: acorn@7.4.1, browser-pack@6.1.0, browser-resolve@2.0.0, browserify@17.0.0, convert-source-map@1.1.3, dash-ast@1.0.0, detective@5.2.1, fs.realpath@1.0.0, glob@7.2.3, insert-module-globals@7.2.1, JSONStream@1.3.5, mkdirp-classic@0.5.3, module-deps@6.2.3, public-encrypt@4.0.3, resolve@1.22.2, sha.js@2.4.11, syntax-error@1.4.0, umd@3.0.3, undeclared-identifiers@1.1.3, builtin-status-codes@3.0.0, https-browserify@1.0.0, concat-map@0.0.1, parents@1.0.1, read-only-stream@2.0.0, stream-combiner2@1.1.1, subarg@1.0.0, typedarray@0.0.6, acorn-walk@7.2.0, assert@1.5.0, browserify-aes@1.2.0, browserify-rsa@4.1.0, browserify-sign@4.2.1, buffer-from@1.1.2, cached-path-relative@1.1.0, create-hash@1.2.0, create-hmac@1.1.7, inherits@2.0.1, inherits@2.0.4, minimalistic-assert@1.0.1, parse-asn1@5.1.6, process-nextick-args@2.0.1, randombytes@2.1.0, randomfill@1.0.4, readable-stream@2.3.8, readable-stream@3.6.2, ripemd160@2.0.2, string_decoder@1.1.1, string_decoder@1.3.0, url@0.11.0, querystring@0.2.0

⚠️ New author

A new npm collaborator published a version of the package for the first time. New collaborators are usually benign additions to a project, but do indicate a change to the security surface area of a package.

Scrutinize new collaborator additions to packages because they now have the ability to publish code into your dependency tree. Packages should avoid frequent or unnecessary additions or changes to publishing rights.

Package New Author Previous Author Source
inline-source-map@0.6.2 (added) zertosh thlorenz package-lock.json via browserify@17.0.0
stream-splicer@2.0.1 (added) goto-bus-stop substack package-lock.json via browserify@17.0.0
tty-browserify@0.0.1 (added) goto-bus-stop substack package-lock.json via browserify@17.0.0
os-browserify@0.3.0 (added) coderpuppy drewyoung1 package-lock.json via browserify@17.0.0
for-each@0.3.3 (added) ljharb raynos package-lock.json via browserify@17.0.0
defined@1.0.1 (added) ljharb substack package-lock.json via browserify@17.0.0
console-browserify@1.2.0 (added) goto-bus-stop raynos package-lock.json via browserify@17.0.0
md5.js@1.3.5 (added) cwmma fanatid package-lock.json via browserify@17.0.0
source-map@0.5.7 (added) tromey nickfitzgerald package-lock.json via browserify@17.0.0
deps-sort@2.0.1 (added) goto-bus-stop zertosh package-lock.json via browserify@17.0.0
domain-browser@1.2.0 (added) bevryme balupton package-lock.json via browserify@17.0.0
wrappy@1.0.2 (added) zkat isaacs package-lock.json via browserify@17.0.0
browserify-zlib@0.2.0 (added) dignifiedquire devongovett package-lock.json via browserify@17.0.0
⚠️ Unmaintained

Package has not been updated in more than a year and may be unmaintained. Problems with the package may go unaddressed.

Package should publish periodic maintenance releases if they are maintained, or deprecate if they have no intention in further maintenance.

Package Last Publish Date Source
wrappy@1.0.2 (added) 4/22/2021, 11:17:34 PM package-lock.json via browserify@17.0.0
des.js@1.0.1 (added) 11/12/2019, 6:14:18 PM package-lock.json via browserify@17.0.0
function-bind@1.1.1 (added) 8/28/2017, 7:51:35 AM package-lock.json via browserify@17.0.0
asn1.js@5.4.1 (added) 6/18/2020, 4:11:51 PM package-lock.json via browserify@17.0.0
brorand@1.1.0 (added) 2/22/2017, 9:39:22 PM package-lock.json via browserify@17.0.0
simple-concat@1.0.1 (added) 7/17/2020, 4:36:24 AM package-lock.json via browserify@17.0.0
path-parse@1.0.7 (added) 5/25/2021, 12:57:37 PM package-lock.json via browserify@17.0.0
supports-preserve-symlinks-flag@1.0.0 (added) 1/3/2022, 7:22:56 AM package-lock.json via browserify@17.0.0
buffer-xor@1.0.3 (added) 8/21/2017, 1:46:38 PM package-lock.json via browserify@17.0.0
balanced-match@1.0.2 (added) 4/6/2021, 12:53:21 PM package-lock.json via browserify@17.0.0
available-typed-arrays@1.0.5 (added) 8/31/2021, 2:24:03 AM package-lock.json via browserify@17.0.0
labeled-stream-splicer@2.0.2 (added) 5/24/2019, 10:35:15 AM package-lock.json via browserify@17.0.0
buffer@5.2.1 (added) 11/23/2020, 2:51:27 AM package-lock.json via browserify@17.0.0
console-browserify@1.2.0 (added) 10/28/2019, 8:44:20 AM package-lock.json via browserify@17.0.0
timers-browserify@1.4.2 (added) 10/27/2020, 10:44:21 AM package-lock.json via browserify@17.0.0
tty-browserify@0.0.1 (added) 1/27/2018, 3:25:42 PM package-lock.json via browserify@17.0.0
stream-http@3.2.0 (added) 4/14/2021, 8:05:52 PM package-lock.json via browserify@17.0.0
through@2.2.7 (added) 7/3/2015, 1:38:39 PM package-lock.json via browserify@17.0.0
miller-rabin@4.0.1 (added) 9/27/2017, 10:09:20 PM package-lock.json via browserify@17.0.0
once@1.4.0 (added) 9/6/2016, 9:11:09 PM package-lock.json via browserify@17.0.0
is-generator-function@1.0.10 (added) 8/6/2021, 5:27:57 AM package-lock.json via browserify@17.0.0
browserify-zlib@0.2.0 (added) 6/3/2017, 4:02:05 PM package-lock.json via browserify@17.0.0
has-symbols@1.0.3 (added) 3/1/2022, 9:23:41 PM package-lock.json via browserify@17.0.0
call-bind@1.0.2 (added) 1/11/2021, 10:36:43 PM package-lock.json via browserify@17.0.0
events@3.3.0 (added) 2/27/2021, 4:51:27 PM package-lock.json via browserify@17.0.0
vm-browserify@1.1.2 (added) 11/4/2019, 12:31:39 PM package-lock.json via browserify@17.0.0
browserify-des@1.0.2 (added) 7/10/2018, 3:06:46 PM package-lock.json via browserify@17.0.0
browserify-cipher@1.0.1 (added) 4/11/2018, 12:05:37 PM package-lock.json via browserify@17.0.0
create-ecdh@4.0.4 (added) 8/4/2020, 4:09:48 PM package-lock.json via browserify@17.0.0
deps-sort@2.0.1 (added) 10/29/2019, 12:35:44 PM package-lock.json via browserify@17.0.0
object-assign@4.1.1 (added) 1/16/2017, 3:35:15 PM package-lock.json via browserify@17.0.0
isarray@1.0.0 (added) 7/8/2019, 1:21:22 PM package-lock.json via browserify@17.0.0
for-each@0.3.3 (added) 6/2/2018, 5:30:56 AM package-lock.json via browserify@17.0.0
is-arguments@1.1.1 (added) 8/5/2021, 10:18:05 PM package-lock.json via browserify@17.0.0
brace-expansion@1.1.11 (added) 2/22/2021, 4:18:13 PM package-lock.json via browserify@17.0.0
domain-browser@1.2.0 (added) 7/29/2021, 8:45:41 PM package-lock.json via browserify@17.0.0
stream-splicer@2.0.1 (added) 5/24/2019, 10:33:27 AM package-lock.json via browserify@17.0.0
has-tostringtag@1.0.0 (added) 8/5/2021, 2:59:41 PM package-lock.json via browserify@17.0.0
xtend@4.0.2 (added) 7/8/2019, 1:35:45 PM package-lock.json via browserify@17.0.0
is-buffer@1.1.6 (added) 11/3/2020, 7:19:33 PM package-lock.json via browserify@17.0.0
lodash.memoize@3.0.4 (added) 8/13/2016, 5:42:08 PM package-lock.json via browserify@17.0.0
stream-browserify@3.0.0 (added) 4/16/2020, 12:50:54 PM package-lock.json via browserify@17.0.0
get-assigned-identifiers@1.2.0 (added) 2/8/2018, 12:29:42 PM package-lock.json via browserify@17.0.0
inflight@1.0.6 (added) 10/13/2016, 3:53:29 AM package-lock.json via browserify@17.0.0
evp_bytestokey@1.0.3 (added) 9/5/2017, 10:20:36 AM package-lock.json via browserify@17.0.0
base64-js@1.5.1 (added) 11/11/2020, 7:33:48 PM package-lock.json via browserify@17.0.0
duplexer2@0.1.4 (added) 11/8/2015, 8:07:39 AM package-lock.json via browserify@17.0.0
hash-base@3.1.0 (added) 5/1/2020, 7:21:46 AM package-lock.json via browserify@17.0.0
combine-source-map@0.8.0 (added) 3/20/2017, 11:16:15 AM package-lock.json via browserify@17.0.0
os-browserify@0.3.0 (added) 4/20/2017, 3:38:21 AM package-lock.json via browserify@17.0.0
crypto-browserify@3.12.0 (added) 11/3/2017, 12:22:40 PM package-lock.json via browserify@17.0.0
ieee754@1.2.1 (added) 10/27/2020, 11:06:07 PM package-lock.json via browserify@17.0.0
path-browserify@1.0.1 (added) 3/3/2020, 4:52:38 PM package-lock.json via browserify@17.0.0
hash.js@1.1.7 (added) 11/30/2018, 7:50:03 PM package-lock.json via browserify@17.0.0
elliptic@6.5.4 (added) 2/2/2021, 6:22:21 PM package-lock.json via browserify@17.0.0
shasum-object@1.0.0 (added) 10/29/2019, 12:19:02 PM package-lock.json via browserify@17.0.0
path-platform@0.11.15 (added) 12/11/2014, 6:57:20 PM package-lock.json via browserify@17.0.0
through2@2.0.5 (added) 6/30/2020, 1:24:55 AM package-lock.json via browserify@17.0.0
minimalistic-crypto-utils@1.0.1 (added) 2/22/2017, 9:20:57 PM package-lock.json via browserify@17.0.0
diffie-hellman@5.0.3 (added) 4/11/2018, 12:03:30 PM package-lock.json via browserify@17.0.0
cipher-base@1.0.4 (added) 7/7/2017, 7:20:57 PM package-lock.json via browserify@17.0.0
process@0.11.10 (added) 4/26/2017, 12:34:27 PM package-lock.json via browserify@17.0.0
htmlescape@1.1.1 (added) 3/23/2016, 2:17:18 AM package-lock.json via browserify@17.0.0
querystring-es3@0.2.1 (added) 4/6/2017, 8:09:46 PM package-lock.json via browserify@17.0.0
md5.js@1.3.5 (added) 10/2/2018, 1:35:56 PM package-lock.json via browserify@17.0.0
pbkdf2@3.1.2 (added) 4/9/2021, 1:46:00 PM package-lock.json via browserify@17.0.0
concat-stream@1.6.2 (added) 12/21/2018, 2:22:15 PM package-lock.json via browserify@17.0.0
acorn-node@1.8.2 (added) 5/30/2020, 6:32:36 PM package-lock.json via browserify@17.0.0
util-deprecate@1.0.2 (added) 10/7/2015, 6:37:40 PM package-lock.json via browserify@17.0.0
hmac-drbg@1.0.1 (added) 4/9/2017, 10:33:31 PM package-lock.json via browserify@17.0.0
safe-buffer@5.1.2 (added) 5/10/2020, 4:37:30 PM package-lock.json via browserify@17.0.0
safe-buffer@5.2.1 (added) 5/10/2020, 4:37:30 PM package-lock.json via browserify@17.0.0
path-is-absolute@1.0.1 (added) 11/8/2018, 11:03:52 AM package-lock.json via browserify@17.0.0
safer-buffer@2.1.2 (added) 4/8/2018, 10:42:42 AM package-lock.json via browserify@17.0.0
core-util-is@1.0.3 (added) 8/31/2021, 2:35:36 PM package-lock.json via browserify@17.0.0
inline-source-map@0.6.2 (added) 4/13/2016, 5:28:03 AM package-lock.json via browserify@17.0.0
jsonparse@1.3.1 (added) 5/9/2017, 7:59:13 PM package-lock.json via browserify@17.0.0
fast-safe-stringify@2.1.1 (added) 9/8/2021, 7:19:16 AM package-lock.json via browserify@17.0.0
has@1.0.3 (added) 6/4/2018, 4:23:29 PM package-lock.json via browserify@17.0.0
constants-browserify@1.0.0 (added) 7/13/2015, 6:16:42 PM package-lock.json via browserify@17.0.0
Pull request alert summary
Issue Status
Critical CVE βœ… 0 issues
CVE βœ… 0 issues
Mild CVE βœ… 0 issues
Install scripts βœ… 0 issues
Native code βœ… 0 issues
Bin script confusion βœ… 0 issues
Bin script shell injection βœ… 0 issues
Filesystem access βœ… 0 issues
Network access βœ… 0 issues
Shell access βœ… 0 issues
Unresolved require βœ… 0 issues
Invalid package.json βœ… 0 issues
HTTP dependency βœ… 0 issues
Git dependency βœ… 0 issues
GitHub dependency βœ… 0 issues
No bug tracker βœ… 0 issues
No contributors or author data βœ… 0 issues
No README βœ… 0 issues
Deprecated βœ… 0 issues
New author ⚠️ 13 issues
Unstable ownership βœ… 0 issues
Non-existent author βœ… 0 issues
Unmaintained ⚠️ 80 issues
Unpublished package βœ… 0 issues
Potential typo squat βœ… 0 issues
Known Malware βœ… 0 issues
Telemetry βœ… 0 issues
Protestware/Troll package βœ… 0 issues
AI detected security risk βœ… 0 issues
AI warning βœ… 0 issues

πŸ“Š Modified Dependency Overview:

βž• Added Package Capability Access +/- Transitive Count Publisher
browserify@17.0.0 eval, network, filesystem, shell, environment +147 goto-bus-stop
mcmire commented 1 year ago

@danfinlay I would love to use our GH Pages action, but it assumes that the project uses Yarn, which this one does not (yet). It may be an easy fix to make that work, but I wasn't sure. I figure we can just manually push to gh-pages for now until I can get that set up. But that would be a next logical step to automate redeploying to GH Pages when a new commit is added to master.

danfinlay commented 1 year ago

yeah, we update this so infrequently that I don’t think it’s terrible to just heard code a build

legobeat commented 1 year ago 
@SocketSecurity ignore acorn@7.4.1
@SocketSecurity ignore browser-pack@6.1.0
@SocketSecurity ignore browser-resolve@2.0.0
@SocketSecurity ignore browserify@17.0.0
@SocketSecurity ignore convert-source-map@1.1.3
@SocketSecurity ignore dash-ast@1.0.0
@SocketSecurity ignore detective@5.2.1
@SocketSecurity ignore fs.realpath@1.0.0
@SocketSecurity ignore glob@7.2.3
@SocketSecurity ignore insert-module-globals@7.2.1
@SocketSecurity ignore JSONStream@1.3.5
@SocketSecurity ignore mkdirp-classic@0.5.3
@SocketSecurity ignore module-deps@6.2.3
@SocketSecurity ignore public-encrypt@4.0.3
@SocketSecurity ignore resolve@1.22.2
@SocketSecurity ignore sha.js@2.4.11
@SocketSecurity ignore syntax-error@1.4.0
@SocketSecurity ignore umd@3.0.3
@SocketSecurity ignore undeclared-identifiers@1.1.3
@SocketSecurity ignore builtin-status-codes@3.0.0
@SocketSecurity ignore https-browserify@1.0.0
@SocketSecurity ignore concat-map@0.0.1
@SocketSecurity ignore parents@1.0.1
@SocketSecurity ignore read-only-stream@2.0.0
@SocketSecurity ignore stream-combiner2@1.1.1
@SocketSecurity ignore subarg@1.0.0
@SocketSecurity ignore typedarray@0.0.6
@SocketSecurity ignore acorn-walk@7.2.0
@SocketSecurity ignore assert@1.5.0
@SocketSecurity ignore browserify-aes@1.2.0
@SocketSecurity ignore browserify-rsa@4.1.0
@SocketSecurity ignore browserify-sign@4.2.1
@SocketSecurity ignore buffer-from@1.1.2
@SocketSecurity ignore cached-path-relative@1.1.0
@SocketSecurity ignore create-hash@1.2.0
@SocketSecurity ignore create-hmac@1.1.7
@SocketSecurity ignore inherits@2.0.1
@SocketSecurity ignore inherits@2.0.4
@SocketSecurity ignore minimalistic-assert@1.0.1
@SocketSecurity ignore parse-asn1@5.1.6
@SocketSecurity ignore process-nextick-args@2.0.1
@SocketSecurity ignore randombytes@2.1.0
@SocketSecurity ignore randomfill@1.0.4
@SocketSecurity ignore readable-stream@2.3.8
@SocketSecurity ignore readable-stream@3.6.2
@SocketSecurity ignore ripemd160@2.0.2
@SocketSecurity ignore string_decoder@1.1.1
@SocketSecurity ignore string_decoder@1.3.0
@SocketSecurity ignore url@0.11.0
@SocketSecurity ignore querystring@0.2.0

w/e