search

n4ze3m / dialoqbase

Create chatbots with ease
https://dialoqbase.n4ze3m.com/
MIT License
1.63k stars 266 forks source link

v1.8.4 #267

Closed n4ze3m closed 5 months ago

n4ze3m commented 5 months ago
vercel[bot] commented 5 months ago

The latest updates on your projects. Learn more about Vercel for Git ↗︎

Name Status Preview Comments Updated (UTC)
dialoqbase-ui ✅ Ready (Inspect) Visit Preview 💬 Add feedback Jun 1, 2024 0:14am
socket-security[bot] commented 5 months ago

New and removed dependencies detected. Learn more about Socket for GitHub ↗︎

Package New capabilities Transitives Size Publisher
npm/@discordjs/util@0.3.1 None 0 34.2 kB crawl
npm/@fastify/autoload@5.7.1 environment, filesystem +5 155 kB matteo.collina
npm/@fastify/cookie@9.1.0 None 0 72.5 kB eomm
npm/@fastify/cors@8.3.0 None 0 92.4 kB eomm
npm/@fastify/deepmerge@1.3.0 None 0 14.3 kB matteo.collina
npm/@fastify/jwt@8.0.0 None +6 589 kB matteo.collina
npm/@fastify/multipart@7.6.0 filesystem +5 1.53 MB eomm
npm/@fastify/sensible@5.2.0 network 0 58.1 kB matteo.collina
npm/@fastify/session@10.5.0 None +1 65.8 kB matteo.collina
npm/@fastify/static@6.10.2 filesystem Transitive: network +5 670 kB eomm
npm/@fastify/swagger-ui@2.0.1 None 0 5.17 MB matteo.collina
npm/@fastify/swagger@8.12.1 None +2 762 kB eomm
npm/@ffmpeg.wasm/core-mt@0.12.0 filesystem, network, unsafe 0 25.8 MB dreamofice
npm/@ffmpeg.wasm/main@0.12.0 filesystem, network +2 168 kB dreamofice
npm/@google-ai/generativelanguage@2.0.0 Transitive: environment, filesystem, network, shell +25 15.4 MB google-wombot
npm/@grammyjs/files@1.0.4 filesystem, network 0 13.4 kB knorpelsenf
npm/@huggingface/inference@1.8.0 network 0 130 kB coyotte508
npm/@istanbuljs/schema@0.1.3 None 0 17.2 kB coreyfarrell
npm/@langchain/anthropic@0.1.4 Transitive: environment, network +20 11.2 MB jacoblee93
npm/@langchain/cohere@0.0.6 Transitive: environment, network +10 2.72 MB jacoblee93
npm/@langchain/community@0.0.35 Transitive: network +8 4.53 MB jacoblee93
npm/@langchain/core@0.1.43 None +4 2 MB jacoblee93
npm/@langchain/google-genai@0.0.16 Transitive: network +1 245 kB basproul
npm/@langchain/openai@0.0.18 Transitive: environment, network +18 12.2 MB jacoblee93
npm/@lukeed/ms@2.0.2 None 0 9.39 kB lukeed
npm/@prisma/client@5.9.1 environment, filesystem, shell 0 4.84 MB prismabot
npm/@slack/bolt@3.13.2 network Transitive: environment, eval, filesystem, unsafe +64 2.81 MB e-zim
npm/@slack/types@2.8.0 None 0 29.4 kB slackhq
npm/@slack/web-api@6.8.1 filesystem Transitive: network +7 1.72 MB filmaj
npm/@supabase/supabase-js@2.24.0 network +13 2.57 MB kiwicopple
npm/@types/bcryptjs@2.4.2 None 0 7.93 kB types
npm/@types/html-to-text@9.0.4 None 0 20.6 kB types
npm/@types/long@4.0.2 None 0 13.3 kB types
npm/@types/mime@1.3.2 None 0 4 kB types
npm/@types/node@20.4.4 None 0 3.82 MB types
npm/@types/pubsub-js@1.8.3 None 0 6.22 kB types
npm/@types/tap@15.0.8 None 0 35.1 kB types
npm/@types/turndown@5.0.4 None 0 7 kB types
npm/@types/yoga-layout@1.9.2 None 0 17.4 kB types
npm/@waylaidwanderer/fastify-sse-v2@3.1.0 None +7 166 kB waylaidwanderer
npm/@xenova/transformers@2.7.0 environment, filesystem, network Transitive: eval, shell, unsafe +4 210 MB xenova
npm/axios@1.4.0 network Transitive: environment +2 1.8 MB jasonsaayman
npm/base64-js@1.5.1 None 0 9.62 kB feross
npm/bcryptjs@2.4.3 None 0 221 kB dcode
npm/binary-extensions@2.2.0 None 0 5.36 kB sindresorhus
npm/bull@4.10.4 filesystem, shell Transitive: environment, eval, network, unsafe +5 2.22 MB manast
npm/bullmq@5.7.1 environment, filesystem, network, shell Transitive: eval, unsafe +6 3.55 MB manast
npm/c8@9.0.0 filesystem, unsafe Transitive: environment, shell +15 650 kB oss-bot
npm/cheerio@1.0.0-rc.12 Transitive: network +10 1.88 MB feedic
npm/ci-info@2.0.0 environment 0 12.8 kB watson
npm/cliui@7.0.4 None +2 68.4 kB oss-bot
npm/cohere-ai@6.2.1 network 0 45.2 kB cohereai
npm/color-support@1.1.3 None 0 9.23 kB isaacs
npm/concurrently@7.6.0 environment, filesystem Transitive: shell +8 11.6 MB gustavohenke
npm/console-control-strings@1.1.0 None 0 12.7 kB iarna
npm/copyfiles@2.4.1 filesystem Transitive: environment +12 527 kB cwmma
npm/cron-parser@4.8.1 filesystem +1 4.17 MB harrisiirak
npm/d3-dsv@2.0.0 Transitive: filesystem, shell +2 138 kB recifs
npm/decamelize@1.2.0 None 0 2.94 kB sindresorhus
npm/discord.js@14.11.0 environment, eval, network Transitive: unsafe +19 9.12 MB crawl
npm/domhandler@5.0.3 None +1 86.7 kB feedic
npm/ecdsa-sig-formatter@1.0.11 None 0 20.6 kB d2l-travis-deploy
npm/end-of-stream@1.4.4 None 0 6.23 kB mafintosh
npm/fast-json-stringify@5.14.1 eval +3 578 kB matteo.collina
npm/fast-uri@2.3.0 None 0 64.4 kB eomm
npm/fastify-cli@6.1.1 environment Transitive: filesystem, unsafe +24 1 MB matteo.collina
npm/fastify-plugin@4.0.0 None 0 28.4 kB matteo.collina
npm/fastify-raw-body@4.3.0 None 0 25.9 kB eomm
npm/fastify-sse-v2@3.1.1 None +8 203 kB mpetrunic
npm/fastify-tsconfig@2.0.0 None 0 6.08 kB fox1t
npm/fastify@4.26.2 Transitive: environment, eval, unsafe +24 4.34 MB matteo.collina
npm/follow-redirects@1.15.2 network 0 28.3 kB rubenverborgh
npm/gaxios@5.1.2 environment, network +4 161 kB google-wombot
npm/glob@8.1.0 filesystem Transitive: environment +6 134 kB isaacs
npm/google-auth-library@8.8.0 environment, filesystem, shell +13 2.8 MB google-wombot
npm/grammy@1.16.2 filesystem, network +3 1.38 MB knorpelsenf
npm/html-to-text@9.0.5 None +5 302 kB killy.mxi
npm/htmlparser2@8.0.2 Transitive: network +3 467 kB feedic
npm/ieee754@1.2.1 None 0 6.8 kB feross
npm/ignore@5.2.4 None 0 51.2 kB kael
npm/ioredis@5.4.1 network +7 859 kB ioredis-robot
npm/istanbul-lib-coverage@3.2.0 None 0 29.3 kB oss-bot
npm/istanbul-lib-report@3.0.1 filesystem +5 89.4 kB oss-bot
npm/istanbul-reports@3.1.7 None +1 307 kB oss-bot
npm/js-tiktoken@1.0.10 None 0 6.58 MB davidduong
npm/langchain@0.1.25 Transitive: environment, filesystem, network +28 20 MB basproul
npm/langsmith@0.1.13 environment, network Transitive: filesystem, shell +3 560 kB wifuhi
npm/mammoth@1.6.0 filesystem Transitive: environment, eval +21 6 MB mwilliamson
npm/minimist@1.2.8 None 0 54.5 kB ljharb
npm/mkdirp@1.0.4 environment, filesystem 0 19.1 kB isaacs
npm/mnemonist@0.39.5 None 0 379 kB yomguithereal
npm/node-fetch@2.6.11 network +3 492 kB node-fetch-bot
npm/object-inspect@1.12.3 None 0 94.8 kB ljharb
npm/openapi-types@12.1.3 None 0 32.7 kB jsdevel
npm/p-queue@6.6.2 None +1 68.9 kB sindresorhus
npm/pdf-parse@1.1.1 filesystem 0 33.3 MB mehmet.kozan
npm/pdfjs-dist@3.7.107 eval, filesystem, network 0 31.1 MB pdfjsbot
npm/prisma@5.9.1 environment 0 11.3 MB prismabot
npm/protobufjs@7.2.5 filesystem, network +1 2.89 MB google-wombot
npm/proxy-addr@2.0.7 None +1 57.5 kB dougwilson
npm/pubsub-js@1.9.4 None 0 112 kB mrgnrdrck
npm/raw-body@2.5.2 network, unsafe +1 38 kB dougwilson
npm/readable-stream@4.4.0 environment +5 665 kB matteo.collina
npm/redis-errors@1.2.0 None 0 8.85 kB bridgear
npm/replicate@0.26.0 environment, network 0 83.6 kB mattt
npm/reusify@1.0.4 None 0 9.44 kB matteo.collina
npm/rfdc@1.3.0 None 0 24 kB davidmarkclements
npm/safe-buffer@5.2.1 None 0 32.1 kB feross
npm/safer-buffer@2.1.2 None 0 42.3 kB chalker
npm/secure-json-parse@2.7.0 None 0 40.7 kB matteo.collina
npm/semver@7.5.1 None +2 122 kB npm-cli-ops
npm/shell-quote@1.8.1 None 0 45 kB ljharb
npm/signal-exit@4.1.0 None 0 77 kB isaacs
npm/sitemapper@3.2.6 None 0 15 kB seantomburke
npm/source-map@0.6.1 None 0 805 kB tromey
npm/string_decoder@1.3.0 None 0 14.4 kB matteo.collina
npm/string-width@4.2.3 None +2 58.4 kB sindresorhus
npm/strip-ansi@6.0.1 None +1 9.64 kB sindresorhus
npm/tap@16.3.6 environment, filesystem, network, shell, unsafe +2 34.8 MB isaacs
npm/ts-node@10.9.1 environment, filesystem, unsafe 0 747 kB cspotcode
npm/tslib@2.6.2 None 0 84 kB typescript-bot
npm/turndown@7.1.3 None 0 191 kB martincizek
npm/type-is@1.6.18 None +1 29.6 kB dougwilson
npm/typescript@5.2.2 None 0 40.6 MB typescript-bot
npm/unique-names-generator@4.7.1 None 0 850 kB andreasonny83
npm/unpipe@1.0.0 None 0 4.31 kB dougwilson
npm/util-deprecate@1.0.2 None 0 5.48 kB tootallnate
npm/vary@1.1.2 None 0 8.75 kB dougwilson
npm/wavefile@11.0.0 None 0 311 kB rochars
npm/which@2.0.2 environment Transitive: filesystem +1 20.9 kB isaacs
npm/ws@7.5.9 network 0 122 kB lpinca
npm/xtend@4.0.2 None 0 6.46 kB raynos
npm/yaml@2.3.4 environment 0 661 kB eemeli
npm/yargs@17.7.2 environment, filesystem +4 468 kB oss-bot
npm/yt-transcript@0.0.2 None 0 29.5 kB n4ze3m
npm/ytdl-core@4.11.5 environment, unsafe 0 100 kB fent
npm/zod-to-json-schema@3.22.4 None 0 161 kB stefan-terdell
npm/zod@3.22.4 None 0 628 kB colinmcd94

🚮 Removed packages: npm/@ant-design/cssinjs@1.18.4, npm/@headlessui/react@1.7.18, npm/@heroicons/react@2.1.1, npm/@mantine/form@6.0.21, npm/@rspack/cli@0.2.12, npm/@tailwindcss/forms@0.5.7, npm/@tailwindcss/typography@0.5.10, npm/@tanstack/react-query@4.36.1, npm/@types/d3@7.4.3, npm/@types/js-cookie@3.0.6, npm/@types/react-dom@18.2.22, npm/@types/react-speech-recognition@3.9.5, npm/@types/react-syntax-highlighter@15.5.11, npm/@types/react@18.2.67, npm/@types/tinycolor2@1.4.6, npm/@typescript-eslint/eslint-plugin@5.62.0, npm/@typescript-eslint/parser@5.62.0, npm/@vitejs/plugin-react-swc@3.6.0, npm/antd@5.15.3, npm/autoprefixer@10.4.18, npm/axios@1.6.8, npm/d3@7.9.0, npm/dayjs@1.11.10, npm/eslint-plugin-react-hooks@4.6.0, npm/eslint-plugin-react-refresh@0.3.5, npm/eslint@8.57.0, npm/eventsource-parser@1.1.2, npm/js-cookie@3.0.5, npm/lint-staged@15.2.2, npm/localforage@1.10.0, npm/match-sorter@6.3.4, npm/mermaid@10.9.0, npm/npm-run-all@4.1.5

View full report↗︎

socket-security[bot] commented 5 months ago

👍 Dependency issues cleared. Learn more about Socket for GitHub ↗︎

This PR previously contained dependency changes with security issues that have been resolved, removed, or ignored.

Ignoring: npm/@anthropic-ai/sdk@0.15.0, npm/@anthropic-ai/sdk@0.9.1, npm/@babel/runtime@7.22.3, npm/@bcoe/v8-coverage@0.2.3, npm/@discordjs/builders@1.6.3, npm/@discordjs/collection@1.5.1, npm/@discordjs/formatters@0.3.1, npm/@discordjs/rest@1.7.1, npm/@discordjs/util@0.3.1, npm/@discordjs/ws@0.8.3, npm/@fastify/accept-negotiator@1.1.0, npm/@fastify/ajv-compiler@3.5.0, npm/@fastify/autoload@5.7.1, npm/@fastify/busboy@1.2.1, npm/@fastify/cookie@9.1.0, npm/@fastify/cors@8.3.0, npm/@fastify/deepmerge@1.3.0, npm/@fastify/error@3.2.1, npm/@fastify/error@3.4.1, npm/@fastify/fast-json-stringify-compiler@4.3.0, npm/@fastify/jwt@8.0.0, npm/@fastify/merge-json-schemas@0.1.1, npm/@fastify/multipart@7.6.0, npm/@fastify/send@2.1.0, npm/@fastify/sensible@5.2.0, npm/@fastify/session@10.5.0, npm/@fastify/static@6.10.2, npm/@fastify/swagger-ui@2.0.1, npm/@fastify/swagger@8.12.1, npm/@ffmpeg.wasm/core-mt@0.12.0, npm/@ffmpeg.wasm/main@0.12.0, npm/@google-ai/generativelanguage@2.0.0, npm/@google/generative-ai@0.7.1, npm/@grammyjs/files@1.0.4, npm/@grammyjs/types@3.1.1, npm/@grpc/grpc-js@1.9.13, npm/@grpc/proto-loader@0.7.10, npm/@grpc/proto-loader@0.7.7, npm/@huggingface/inference@1.8.0, npm/@ioredis/commands@1.2.0, npm/@istanbuljs/schema@0.1.3, npm/@langchain/anthropic@0.1.4, npm/@langchain/cohere@0.0.6, npm/@langchain/community@0.0.35, npm/@langchain/core@0.1.43, npm/@langchain/google-genai@0.0.16, npm/@langchain/openai@0.0.18, npm/@lukeed/ms@2.0.2, npm/@prisma/client@5.9.1, npm/@sapphire/async-queue@1.5.0, npm/@sapphire/shapeshift@3.9.2, npm/@sapphire/snowflake@3.5.1, npm/@selderee/plugin-htmlparser2@0.11.0, npm/@sindresorhus/is@4.6.0, npm/@slack/bolt@3.13.2, npm/@slack/logger@3.0.0, npm/@slack/oauth@2.6.1, npm/@slack/socket-mode@1.3.2, npm/@slack/types@2.8.0, npm/@slack/web-api@6.8.1, npm/@supabase/functions-js@2.1.1, npm/@supabase/gotrue-js@2.29.0, npm/@supabase/postgrest-js@1.7.0, npm/@supabase/realtime-js@2.7.2, npm/@supabase/storage-js@2.5.1, npm/@supabase/supabase-js@2.24.0, npm/@types/bcryptjs@2.4.2, npm/@types/body-parser@1.19.2, npm/@types/connect@3.4.35, npm/@types/express-serve-static-core@4.17.35, npm/@types/express@4.17.17, npm/@types/html-to-text@9.0.4, npm/@types/http-errors@2.0.1, npm/@types/is-stream@1.1.0, npm/@types/istanbul-lib-coverage@2.0.6, npm/@types/jsonwebtoken@8.5.9, npm/@types/long@4.0.2, npm/@types/mime@1.3.2, npm/@types/node-fetch@2.6.11, npm/@types/node@18.19.22, npm/@types/node@20.4.4, npm/@types/p-queue@2.3.2, npm/@types/phoenix@1.6.0, npm/@types/promise.allsettled@1.0.3, npm/@types/pubsub-js@1.8.3, npm/@types/qs@6.9.7, npm/@types/range-parser@1.2.4, npm/@types/send@0.17.1, npm/@types/serve-static@1.15.2, npm/@types/tap@15.0.8, npm/@types/tsscmp@1.0.0, npm/@types/turndown@5.0.4, npm/@types/uuid@9.0.8, npm/@types/websocket@1.0.5, npm/@types/ws@7.4.7, npm/@types/ws@8.5.5, npm/@types/yoga-layout@1.9.2, npm/@vladfrangu/async_event_emitter@2.2.2, npm/@waylaidwanderer/fastify-sse-v2@3.1.0, npm/@xenova/transformers@2.7.0, npm/@xmldom/xmldom@0.8.8, npm/abbrev@1.1.1, npm/abort-controller@3.0.0, npm/abstract-logging@2.0.1, npm/agent-base@7.1.0, npm/agentkeepalive@4.5.0, npm/ajv-formats@3.0.1, npm/ansi-styles@5.2.0, npm/aproba@2.0.0, npm/archy@1.0.0, npm/argparse@1.0.10, npm/arrify@2.0.1, npm/asn1.js@5.4.1, npm/available-typed-arrays@1.0.5, npm/avvio@8.3.0, npm/axios@0.27.2, npm/axios@1.4.0, npm/base-64@0.1.0, npm/base64-js@1.5.1, npm/bcryptjs@2.4.3, npm/bignumber.js@9.1.1, npm/binary-extensions@2.2.0, npm/bluebird@3.4.7, npm/bn.js@4.12.0, npm/body-parser@1.20.1, npm/boolbase@1.0.0, npm/buffer-equal-constant-time@1.0.1, npm/buffer@6.0.3, npm/bull@4.10.4, npm/bullmq@5.7.1, npm/c8@9.0.0, npm/cacheable-lookup@5.0.4, npm/camelcase@5.3.1, npm/camelcase@6.3.0, npm/charenc@0.0.2, npm/cheerio-select@2.1.0, npm/cheerio@1.0.0-rc.12, npm/chownr@2.0.0, npm/ci-info@2.0.0, npm/clean-stack@2.2.0, npm/cliui@7.0.4, npm/close-with-grace@1.3.0, npm/cluster-key-slot@1.1.2, npm/cohere-ai@6.2.1, npm/cohere-ai@7.9.1, npm/color-support@1.1.3, npm/commander@10.0.1, npm/commist@3.2.0, npm/commondir@1.0.1, npm/concurrently@7.6.0, npm/console-control-strings@1.1.0, npm/convert-source-map@1.9.0, npm/convert-source-map@2.0.0, npm/cookie@0.6.0, npm/copyfiles@2.4.1, npm/cron-parser@4.8.1, npm/cross-fetch@3.1.8, npm/crypt@0.0.2, npm/css-select@5.1.0, npm/css-what@6.1.0, npm/d3-dsv@2.0.0, npm/date-fns@2.30.0, npm/debuglog@1.0.1, npm/decamelize@1.2.0, npm/deep-extend@0.6.0, npm/deepmerge@4.3.1, npm/defer-to-connect@2.0.1, npm/delegates@1.0.0, npm/denque@2.1.0, npm/digest-fetch@1.3.0, npm/dingbat-to-unicode@1.0.1, npm/discord-api-types@0.37.46, npm/discord.js@14.11.0, npm/dom-serializer@2.0.0, npm/domelementtype@2.3.0, npm/domhandler@5.0.3, npm/domutils@3.1.0, npm/dotenv@16.4.5, npm/duck@0.1.12, npm/duplexify@4.1.2, npm/ecdsa-sig-formatter@1.0.11, npm/end-of-stream@1.4.4, npm/es-array-method-boxes-properly@1.0.0, npm/es6-error@4.1.1, npm/escalade@3.1.1, npm/escape-string-regexp@2.0.0, npm/event-target-shim@5.0.1, npm/eventemitter3@3.1.2, npm/expr-eval@2.0.2, npm/express@4.18.2, npm/fast-content-type-parse@1.1.0, npm/fast-decode-uri-component@1.0.1, npm/fast-fifo@1.3.0, npm/fast-json-stringify@5.14.1, npm/fast-jwt@3.3.3, npm/fast-querystring@1.1.2, npm/fast-safe-stringify@2.1.1, npm/fast-text-encoding@1.0.6, npm/fast-uri@2.3.0, npm/fast-xml-parser@4.4.0, npm/fastify-cli@6.1.1, npm/fastify-plugin@4.0.0, npm/fastify-plugin@4.5.0, npm/fastify-raw-body@4.3.0, npm/fastify-sse-v2@3.1.1, npm/fastify-tsconfig@2.0.0, npm/fastify@4.26.2, npm/file-type@18.5.0, npm/find-my-way@8.1.0, npm/finity@0.5.4, npm/flat@5.0.2, npm/follow-redirects@1.15.2, npm/form-data-encoder@1.7.2, npm/form-data@2.5.1, npm/formdata-node@4.4.1, npm/fsevents@2.3.2, npm/function-bind@1.1.1, npm/gaxios@5.1.2, npm/gaxios@6.1.1, npm/gcp-metadata@5.2.0, npm/gcp-metadata@6.1.0, npm/generify@4.2.0, npm/gensync@1.0.0-beta.2, npm/get-iterator@1.0.2, npm/get-package-type@0.1.0, npm/get-port@5.1.1, npm/glob@8.1.0, npm/globals@11.12.0, npm/google-auth-library@8.8.0, npm/google-auth-library@9.4.1, npm/google-gax@4.0.5, npm/google-p12-pem@4.0.1, npm/grammy@1.16.2, npm/gtoken@6.1.2, npm/gtoken@7.0.1, npm/has-proto@1.0.1, npm/has-unicode@2.0.1, npm/help-me@4.2.0, npm/hexoid@1.0.0, npm/html-escaper@2.0.2, npm/html-to-text@9.0.5, npm/htmlparser2@8.0.2, npm/http-cache-semantics@4.1.1, npm/https-proxy-agent@7.0.2, npm/humanize-ms@1.2.1, npm/ieee754@1.2.1, npm/ignore@5.2.4, npm/indent-string@4.0.0, npm/ini@1.3.8, npm/ioredis@5.4.1, npm/is-electron@2.2.0, npm/is-negative-zero@2.0.2, npm/is-stream@1.1.0, npm/is-typedarray@1.0.0, npm/is-url@1.2.4, npm/is-windows@1.0.2, npm/isbinaryfile@4.0.10, npm/istanbul-lib-coverage@3.2.0, npm/istanbul-lib-report@3.0.1, npm/istanbul-reports@3.1.7, npm/it-pushable@1.4.2, npm/it-to-stream@1.0.0, npm/joycon@3.1.1, npm/js-base64@3.7.2, npm/js-tiktoken@1.0.10, npm/jsesc@2.5.2, npm/json-bigint@1.0.0, npm/json-schema-ref-resolver@1.0.1, npm/json-schema-resolver@2.0.0, npm/jsonpointer@5.0.1, npm/jsonwebtoken@9.0.1, npm/jszip@3.10.1, npm/jwa@1.4.1, npm/jwa@2.0.0, npm/jws@3.2.2, npm/jws@4.0.0, npm/langchain@0.1.25, npm/langchainhub@0.0.8, npm/langsmith@0.1.13, npm/lie@3.3.0, npm/light-my-request@5.13.0, npm/lodash.camelcase@4.3.0, npm/lodash.defaults@4.2.0, npm/lodash.isarguments@3.1.0, npm/lodash.isstring@4.0.1, npm/lodash.snakecase@4.1.1, npm/long@4.0.0, npm/long@5.2.3, npm/lop@0.4.1, npm/lowercase-keys@2.0.0, npm/luxon@3.3.0, npm/make-dir@4.0.0, npm/make-promises-safe@5.1.0, npm/mammoth@1.6.0, npm/md5@2.3.0, npm/mime@3.0.0, npm/mimic-response@1.0.1, npm/mimic-response@3.1.0, npm/minimatch@5.1.6, npm/minimist@1.2.8, npm/minipass@5.0.0, npm/mkdirp@1.0.4, npm/ml-distance@4.0.1, npm/mnemonist@0.39.5, npm/msgpackr-extract@3.0.2, npm/msgpackr@1.10.1, npm/msgpackr@1.9.4, npm/node-abort-controller@3.1.1, npm/node-domexception@1.0.0, npm/node-fetch@2.6.11, npm/node-fetch@2.6.12, npm/node-fetch@2.7.0, npm/noms@0.0.0, npm/normalize-url@6.1.0, npm/nth-check@2.1.1, npm/object-inspect@1.12.3, npm/onnxruntime-node@1.14.0, npm/onnxruntime-web@1.14.0, npm/openai@4.28.4, npm/openapi-types@12.1.3, npm/option@0.2.4, npm/p-cancelable@1.1.0, npm/p-cancelable@2.1.1, npm/p-defer@3.0.0, npm/p-fifo@1.0.0, npm/p-finally@1.0.0, npm/p-limit@2.3.0, npm/p-queue@2.4.2, npm/p-queue@6.6.2, npm/p-try@2.2.0, npm/pako@1.0.11, npm/parse5-htmlparser2-tree-adapter@7.0.0, npm/path-exists@3.0.0, npm/path-to-regexp@6.2.1, npm/pdf-parse@1.1.1, npm/pdfjs-dist@3.7.107, npm/pino-pretty@10.3.1, npm/pino@8.20.0, npm/pkg-up@3.1.0, npm/please-upgrade-node@3.2.0, npm/prisma@5.9.1, npm/process-nextick-args@2.0.1, npm/process-warning@3.0.0, npm/process@0.11.10, npm/promise.allsettled@1.0.6, npm/proto3-json-serializer@2.0.0, npm/protobufjs@7.2.5, npm/proxy-addr@2.0.7, npm/proxy-from-env@1.1.0, npm/pubsub-js@1.9.4, npm/pump@3.0.0, npm/qs@6.11.0, npm/qs@6.11.2, npm/quick-lru@5.1.1, npm/range-parser@1.2.1, npm/raw-body@2.5.1, npm/raw-body@2.5.2, npm/react@17.0.2, npm/readable-stream@2.3.8, npm/readable-stream@3.6.2, npm/readable-stream@4.4.0, npm/readable-web-to-node-stream@3.0.2, npm/readdirp@3.6.0, npm/redis-errors@1.2.0, npm/redis-parser@3.0.0, npm/regenerator-runtime@0.13.11, npm/replicate@0.26.0, npm/require-directory@2.1.1, npm/require-from-string@2.0.2, npm/require-main-filename@2.0.0, npm/resolve-alpn@1.2.1, npm/resolve-from@3.0.0, npm/resolve-from@5.0.0, npm/retry-request@7.0.1, npm/retry@0.13.1, npm/reusify@1.0.4, npm/rfdc@1.3.0, npm/rw@1.3.3, npm/rxjs@7.8.1, npm/safe-buffer@5.1.2, npm/safe-buffer@5.2.1, npm/safe-regex2@2.0.0, npm/safe-stable-stringify@2.4.3, npm/safer-buffer@2.1.2, npm/secure-json-parse@2.7.0, npm/selderee@0.11.0, npm/semver-compare@1.0.0, npm/semver@6.3.0, npm/semver@7.5.1, npm/semver@7.6.0, npm/send@0.18.0, npm/serve-static@1.15.0, npm/server@1.0.0, npm/set-blocking@2.0.0, npm/set-cookie-parser@2.6.0, npm/setimmediate@1.0.5, npm/setprototypeof@1.2.0, npm/sharp@0.32.1, npm/shebang-command@2.0.0, npm/shebang-regex@3.0.0, npm/shell-quote@1.8.1, npm/side-channel@1.0.4, npm/signal-exit@3.0.7, npm/signal-exit@4.1.0, npm/simple-get@4.0.1, npm/sitemapper@3.2.6, npm/source-map@0.6.1, npm/spawn-command@0.0.2-1, npm/split2@3.2.2, npm/split2@4.2.0, npm/sprintf-js@1.0.3, npm/standard-as-callback@2.1.0, npm/statuses@2.0.1, npm/steed@1.1.3, npm/stream-shift@1.0.1, npm/stream-wormhole@1.1.0, npm/streamsearch@1.1.0, npm/string-width@4.2.3, npm/string_decoder@1.1.1, npm/string_decoder@1.3.0, npm/strip-ansi@6.0.1, npm/strip-bom@4.0.0, npm/strip-json-comments@2.0.1, npm/strip-json-comments@3.1.1, npm/strnum@1.0.5, npm/strtok3@7.0.0, npm/supports-color@7.2.0, npm/supports-color@8.1.1, npm/tap@16.3.6, npm/test-exclude@6.0.0, npm/text-decoding@1.0.0, npm/through2@2.0.5, npm/tmpl@1.0.5, npm/to-fast-properties@2.0.0, npm/to-regex-range@5.0.1, npm/toad-cache@3.7.0, npm/toidentifier@1.0.1, npm/token-types@5.0.1, npm/tr46@0.0.3, npm/tree-kill@1.2.2, npm/ts-mixer@6.0.3, npm/ts-node@10.9.1, npm/tslib@2.6.2, npm/tsscmp@1.0.6, npm/turndown@7.1.3, npm/type-fest@0.21.3, npm/type-fest@0.8.1, npm/type-is@1.6.18, npm/typescript@5.2.2, npm/underscore@1.13.6, npm/undici-types@5.26.5, npm/undici@5.22.1, npm/unique-names-generator@4.7.1, npm/unpipe@1.0.0, npm/untildify@4.0.0, npm/uri-js@4.4.1, npm/url-join@4.0.1, npm/util-deprecate@1.0.2, npm/utils-merge@1.0.1, npm/uuid@8.3.2, npm/uuid@9.0.0, npm/v8-to-istanbul@9.2.0, npm/vary@1.1.2, npm/walker@1.0.8, npm/wavefile@11.0.0, npm/web-streams-polyfill@3.3.3, npm/web-streams-polyfill@4.0.0-beta.3, npm/webidl-conversions@3.0.1, npm/websocket@1.0.34, npm/whatwg-url@5.0.0, npm/which-module@2.0.1, npm/which@2.0.2, npm/wrap-ansi@7.0.0, npm/wrappy@1.0.2, npm/ws@7.5.9, npm/ws@8.13.0, npm/xmlbuilder@10.1.1, npm/xtend@4.0.2, npm/y18n@4.0.3, npm/y18n@5.0.8, npm/yallist@3.1.1, npm/yallist@4.0.0, npm/yaml@1.10.2, npm/yaml@2.3.4, npm/yargs-parser@20.2.9, npm/yargs-parser@21.1.1, npm/yargs@16.2.0, npm/yargs@17.7.2, npm/yocto-queue@0.1.0, npm/yt-transcript@0.0.2, npm/ytdl-core@4.11.5, npm/zod-to-json-schema@3.22.4, npm/zod@3.22.4

View full report↗︎

Next steps

Take a deeper look at the dependency

Take a moment to review the security alert above. Review the linked package source code to understand the potential risk. Ensure the package is not malicious before proceeding. If you're unsure how to proceed, reach out to your security team or ask the Socket team for help at support [AT] socket [DOT] dev.

Remove the package

If you happen to install a dependency that Socket reports as Known Malware you should immediately remove it and select a different dependency. For other alert types, you may may wish to investigate alternative packages or consider if there are other ways to mitigate the specific risk posed by the dependency.

Mark a package as acceptable risk

To ignore an alert, reply with a comment starting with @SocketSecurity ignore followed by a space separated list of ecosystem/package-name@version specifiers. e.g. @SocketSecurity ignore npm/foo@1.0.0 or ignore all packages with @SocketSecurity ignore-all

n4ze3m commented 5 months ago

@SocketSecurity ignore-all