search

phylum-dev / cli

Command line interface for the Phylum API
https://phylum.io
GNU General Public License v3.0
103 stars 11 forks source link

Bump dependencies #1547

Closed phylum-bot closed 1 day ago

phylum-bot commented 1 day ago

Bump dependencies for all SemVer-compatible updates.

phylum-io[bot] commented 1 day ago

Phylum OSS Supply Chain Risk Analysis - FAILED

This repository analyzes the risk of new dependencies. An administrator of this repository has set requirements via Phylum policy.

If you see this comment, one or more dependencies have failed Phylum's risk analysis.

Package: rsa@0.9.7 failed.

rsa@0.9.7 contains long high-entropy strings

Risk Domain: Malicious Code
Risk Level: low

Reason: Obfuscated code

View this project in the Phylum UI

phylum-io[bot] commented 1 day ago

Phylum OSS Supply Chain Risk Analysis - SUCCESS

The Phylum risk analysis is complete and has passed the active policy.

View this project in the Phylum UI