chore(deps): update devdependencies (non-major)

[renovate[bot]]

This PR contains the following updates:

Package	Change	Age	Adoption	Passing	Confidence
@types/node (source)	22.7.3 -> 22.7.4
php-stubs/wordpress-stubs	6.6.0 -> 6.6.2
rollup (source)	4.22.4 -> 4.22.5

---

Release Notes

php-stubs/wordpress-stubs (php-stubs/wordpress-stubs)

### [`v6.6.2`](https://redirect.github.com/php-stubs/wordpress-stubs/releases/tag/v6.6.2): Now the monkey jumps into the water [Compare Source](https://redirect.github.com/php-stubs/wordpress-stubs/compare/v6.6.1...v6.6.2) (a Hungarian saying) ### [`v6.6.1`](https://redirect.github.com/php-stubs/wordpress-stubs/compare/v6.6.0...v6.6.1) [Compare Source](https://redirect.github.com/php-stubs/wordpress-stubs/compare/v6.6.0...v6.6.1)

rollup/rollup (rollup)

### [`v4.22.5`](https://redirect.github.com/rollup/rollup/blob/HEAD/CHANGELOG.md#4225) [Compare Source](https://redirect.github.com/rollup/rollup/compare/v4.22.4...v4.22.5) *2024-09-27* ##### Bug Fixes - Allow parsing of certain unicode characters again ([#​5674](https://redirect.github.com/rollup/rollup/issues/5674)) ##### Pull Requests - [#​5674](https://redirect.github.com/rollup/rollup/pull/5674): Fix panic with unicode characters ([@​sapphi-red](https://redirect.github.com/sapphi-red), [@​lukastaegert](https://redirect.github.com/lukastaegert)) - [#​5675](https://redirect.github.com/rollup/rollup/pull/5675): chore(deps): update dependency rollup to v4.22.4 \[security] ([@​renovate](https://redirect.github.com/renovate)\[bot]) - [#​5680](https://redirect.github.com/rollup/rollup/pull/5680): chore(deps): update dependency [@​rollup/plugin-commonjs](https://redirect.github.com/rollup/plugin-commonjs) to v28 ([@​renovate](https://redirect.github.com/renovate)\[bot], [@​lukastaegert](https://redirect.github.com/lukastaegert)) - [#​5681](https://redirect.github.com/rollup/rollup/pull/5681): chore(deps): update dependency [@​rollup/plugin-replace](https://redirect.github.com/rollup/plugin-replace) to v6 ([@​renovate](https://redirect.github.com/renovate)\[bot]) - [#​5682](https://redirect.github.com/rollup/rollup/pull/5682): chore(deps): update dependency [@​rollup/plugin-typescript](https://redirect.github.com/rollup/plugin-typescript) to v12 ([@​renovate](https://redirect.github.com/renovate)\[bot]) - [#​5684](https://redirect.github.com/rollup/rollup/pull/5684): chore(deps): lock file maintenance minor/patch updates ([@​renovate](https://redirect.github.com/renovate)\[bot])

---

Configuration

📅 Schedule: Branch creation - At any time (no schedule defined), Automerge - At any time (no schedule defined).

🚦 Automerge: Enabled.

♻ Rebasing: Whenever PR is behind base branch, or you tick the rebase/retry checkbox.

👻 Immortal: This PR will be recreated if closed unmerged. Get config help if that's undesired.

---

• [ ] If you want to rebase/retry this PR, check this box

---

This PR was generated by Mend Renovate. View the repository job log.

[github-actions[bot]]

Dependency Review

✅ No vulnerabilities or license issues or OpenSSF Scorecard issues found.

OpenSSF Scorecard

Scorecard details

Package	Version	Score	Details
composer/php-stubs/wordpress-stubs	6.6.2	Unknown	Unknown
npm/@rollup/rollup-android-arm-eabi	4.22.5	:green_circle: 6	Details Check Score Reason Code-Review :warning: 2 Found 5/18 approved changesets -- score normalized to 2 Maintained :green_circle: 10 30 commit(s) and 11 issue activity found in the last 90 days -- score normalized to 10 CII-Best-Practices :warning: 0 no effort to earn an OpenSSF best practices badge detected License :green_circle: 9 license file detected Signed-Releases :warning: -1 no releases found Token-Permissions :warning: 0 detected GitHub workflow tokens with excessive permissions Dangerous-Workflow :green_circle: 10 no dangerous workflow patterns detected Branch-Protection :green_circle: 8 branch protection is not maximal on development and all release branches Packaging :warning: -1 packaging workflow not detected Security-Policy :green_circle: 10 security policy file detected SAST :warning: 0 SAST tool is not run on all commits -- score normalized to 0 Binary-Artifacts :green_circle: 10 no binaries found in the repo Pinned-Dependencies :warning: 2 dependency not pinned by hash detected -- score normalized to 2 Fuzzing :warning: 0 project is not fuzzed Vulnerabilities :green_circle: 10 0 existing vulnerabilities detected
npm/@rollup/rollup-android-arm64	4.22.5	:green_circle: 6	Details Check Score Reason Code-Review :warning: 2 Found 5/18 approved changesets -- score normalized to 2 Maintained :green_circle: 10 30 commit(s) and 11 issue activity found in the last 90 days -- score normalized to 10 CII-Best-Practices :warning: 0 no effort to earn an OpenSSF best practices badge detected License :green_circle: 9 license file detected Signed-Releases :warning: -1 no releases found Token-Permissions :warning: 0 detected GitHub workflow tokens with excessive permissions Dangerous-Workflow :green_circle: 10 no dangerous workflow patterns detected Branch-Protection :green_circle: 8 branch protection is not maximal on development and all release branches Packaging :warning: -1 packaging workflow not detected Security-Policy :green_circle: 10 security policy file detected SAST :warning: 0 SAST tool is not run on all commits -- score normalized to 0 Binary-Artifacts :green_circle: 10 no binaries found in the repo Pinned-Dependencies :warning: 2 dependency not pinned by hash detected -- score normalized to 2 Fuzzing :warning: 0 project is not fuzzed Vulnerabilities :green_circle: 10 0 existing vulnerabilities detected
npm/@rollup/rollup-darwin-arm64	4.22.5	:green_circle: 6	Details Check Score Reason Code-Review :warning: 2 Found 5/18 approved changesets -- score normalized to 2 Maintained :green_circle: 10 30 commit(s) and 11 issue activity found in the last 90 days -- score normalized to 10 CII-Best-Practices :warning: 0 no effort to earn an OpenSSF best practices badge detected License :green_circle: 9 license file detected Signed-Releases :warning: -1 no releases found Token-Permissions :warning: 0 detected GitHub workflow tokens with excessive permissions Dangerous-Workflow :green_circle: 10 no dangerous workflow patterns detected Branch-Protection :green_circle: 8 branch protection is not maximal on development and all release branches Packaging :warning: -1 packaging workflow not detected Security-Policy :green_circle: 10 security policy file detected SAST :warning: 0 SAST tool is not run on all commits -- score normalized to 0 Binary-Artifacts :green_circle: 10 no binaries found in the repo Pinned-Dependencies :warning: 2 dependency not pinned by hash detected -- score normalized to 2 Fuzzing :warning: 0 project is not fuzzed Vulnerabilities :green_circle: 10 0 existing vulnerabilities detected
npm/@rollup/rollup-darwin-x64	4.22.5	:green_circle: 6	Details Check Score Reason Code-Review :warning: 2 Found 5/18 approved changesets -- score normalized to 2 Maintained :green_circle: 10 30 commit(s) and 11 issue activity found in the last 90 days -- score normalized to 10 CII-Best-Practices :warning: 0 no effort to earn an OpenSSF best practices badge detected License :green_circle: 9 license file detected Signed-Releases :warning: -1 no releases found Token-Permissions :warning: 0 detected GitHub workflow tokens with excessive permissions Dangerous-Workflow :green_circle: 10 no dangerous workflow patterns detected Branch-Protection :green_circle: 8 branch protection is not maximal on development and all release branches Packaging :warning: -1 packaging workflow not detected Security-Policy :green_circle: 10 security policy file detected SAST :warning: 0 SAST tool is not run on all commits -- score normalized to 0 Binary-Artifacts :green_circle: 10 no binaries found in the repo Pinned-Dependencies :warning: 2 dependency not pinned by hash detected -- score normalized to 2 Fuzzing :warning: 0 project is not fuzzed Vulnerabilities :green_circle: 10 0 existing vulnerabilities detected
npm/@rollup/rollup-linux-arm-gnueabihf	4.22.5	:green_circle: 6	Details Check Score Reason Code-Review :warning: 2 Found 5/18 approved changesets -- score normalized to 2 Maintained :green_circle: 10 30 commit(s) and 11 issue activity found in the last 90 days -- score normalized to 10 CII-Best-Practices :warning: 0 no effort to earn an OpenSSF best practices badge detected License :green_circle: 9 license file detected Signed-Releases :warning: -1 no releases found Token-Permissions :warning: 0 detected GitHub workflow tokens with excessive permissions Dangerous-Workflow :green_circle: 10 no dangerous workflow patterns detected Branch-Protection :green_circle: 8 branch protection is not maximal on development and all release branches Packaging :warning: -1 packaging workflow not detected Security-Policy :green_circle: 10 security policy file detected SAST :warning: 0 SAST tool is not run on all commits -- score normalized to 0 Binary-Artifacts :green_circle: 10 no binaries found in the repo Pinned-Dependencies :warning: 2 dependency not pinned by hash detected -- score normalized to 2 Fuzzing :warning: 0 project is not fuzzed Vulnerabilities :green_circle: 10 0 existing vulnerabilities detected
npm/@rollup/rollup-linux-arm-musleabihf	4.22.5	:green_circle: 6	Details Check Score Reason Code-Review :warning: 2 Found 5/18 approved changesets -- score normalized to 2 Maintained :green_circle: 10 30 commit(s) and 11 issue activity found in the last 90 days -- score normalized to 10 CII-Best-Practices :warning: 0 no effort to earn an OpenSSF best practices badge detected License :green_circle: 9 license file detected Signed-Releases :warning: -1 no releases found Token-Permissions :warning: 0 detected GitHub workflow tokens with excessive permissions Dangerous-Workflow :green_circle: 10 no dangerous workflow patterns detected Branch-Protection :green_circle: 8 branch protection is not maximal on development and all release branches Packaging :warning: -1 packaging workflow not detected Security-Policy :green_circle: 10 security policy file detected SAST :warning: 0 SAST tool is not run on all commits -- score normalized to 0 Binary-Artifacts :green_circle: 10 no binaries found in the repo Pinned-Dependencies :warning: 2 dependency not pinned by hash detected -- score normalized to 2 Fuzzing :warning: 0 project is not fuzzed Vulnerabilities :green_circle: 10 0 existing vulnerabilities detected
npm/@rollup/rollup-linux-arm64-gnu	4.22.5	:green_circle: 6	Details Check Score Reason Code-Review :warning: 2 Found 5/18 approved changesets -- score normalized to 2 Maintained :green_circle: 10 30 commit(s) and 11 issue activity found in the last 90 days -- score normalized to 10 CII-Best-Practices :warning: 0 no effort to earn an OpenSSF best practices badge detected License :green_circle: 9 license file detected Signed-Releases :warning: -1 no releases found Token-Permissions :warning: 0 detected GitHub workflow tokens with excessive permissions Dangerous-Workflow :green_circle: 10 no dangerous workflow patterns detected Branch-Protection :green_circle: 8 branch protection is not maximal on development and all release branches Packaging :warning: -1 packaging workflow not detected Security-Policy :green_circle: 10 security policy file detected SAST :warning: 0 SAST tool is not run on all commits -- score normalized to 0 Binary-Artifacts :green_circle: 10 no binaries found in the repo Pinned-Dependencies :warning: 2 dependency not pinned by hash detected -- score normalized to 2 Fuzzing :warning: 0 project is not fuzzed Vulnerabilities :green_circle: 10 0 existing vulnerabilities detected
npm/@rollup/rollup-linux-arm64-musl	4.22.5	:green_circle: 6	Details Check Score Reason Code-Review :warning: 2 Found 5/18 approved changesets -- score normalized to 2 Maintained :green_circle: 10 30 commit(s) and 11 issue activity found in the last 90 days -- score normalized to 10 CII-Best-Practices :warning: 0 no effort to earn an OpenSSF best practices badge detected License :green_circle: 9 license file detected Signed-Releases :warning: -1 no releases found Token-Permissions :warning: 0 detected GitHub workflow tokens with excessive permissions Dangerous-Workflow :green_circle: 10 no dangerous workflow patterns detected Branch-Protection :green_circle: 8 branch protection is not maximal on development and all release branches Packaging :warning: -1 packaging workflow not detected Security-Policy :green_circle: 10 security policy file detected SAST :warning: 0 SAST tool is not run on all commits -- score normalized to 0 Binary-Artifacts :green_circle: 10 no binaries found in the repo Pinned-Dependencies :warning: 2 dependency not pinned by hash detected -- score normalized to 2 Fuzzing :warning: 0 project is not fuzzed Vulnerabilities :green_circle: 10 0 existing vulnerabilities detected
npm/@rollup/rollup-linux-powerpc64le-gnu	4.22.5	:green_circle: 6	Details Check Score Reason Code-Review :warning: 2 Found 5/18 approved changesets -- score normalized to 2 Maintained :green_circle: 10 30 commit(s) and 11 issue activity found in the last 90 days -- score normalized to 10 CII-Best-Practices :warning: 0 no effort to earn an OpenSSF best practices badge detected License :green_circle: 9 license file detected Signed-Releases :warning: -1 no releases found Token-Permissions :warning: 0 detected GitHub workflow tokens with excessive permissions Dangerous-Workflow :green_circle: 10 no dangerous workflow patterns detected Branch-Protection :green_circle: 8 branch protection is not maximal on development and all release branches Packaging :warning: -1 packaging workflow not detected Security-Policy :green_circle: 10 security policy file detected SAST :warning: 0 SAST tool is not run on all commits -- score normalized to 0 Binary-Artifacts :green_circle: 10 no binaries found in the repo Pinned-Dependencies :warning: 2 dependency not pinned by hash detected -- score normalized to 2 Fuzzing :warning: 0 project is not fuzzed Vulnerabilities :green_circle: 10 0 existing vulnerabilities detected
npm/@rollup/rollup-linux-riscv64-gnu	4.22.5	:green_circle: 6	Details Check Score Reason Code-Review :warning: 2 Found 5/18 approved changesets -- score normalized to 2 Maintained :green_circle: 10 30 commit(s) and 11 issue activity found in the last 90 days -- score normalized to 10 CII-Best-Practices :warning: 0 no effort to earn an OpenSSF best practices badge detected License :green_circle: 9 license file detected Signed-Releases :warning: -1 no releases found Token-Permissions :warning: 0 detected GitHub workflow tokens with excessive permissions Dangerous-Workflow :green_circle: 10 no dangerous workflow patterns detected Branch-Protection :green_circle: 8 branch protection is not maximal on development and all release branches Packaging :warning: -1 packaging workflow not detected Security-Policy :green_circle: 10 security policy file detected SAST :warning: 0 SAST tool is not run on all commits -- score normalized to 0 Binary-Artifacts :green_circle: 10 no binaries found in the repo Pinned-Dependencies :warning: 2 dependency not pinned by hash detected -- score normalized to 2 Fuzzing :warning: 0 project is not fuzzed Vulnerabilities :green_circle: 10 0 existing vulnerabilities detected
npm/@rollup/rollup-linux-s390x-gnu	4.22.5	:green_circle: 6	Details Check Score Reason Code-Review :warning: 2 Found 5/18 approved changesets -- score normalized to 2 Maintained :green_circle: 10 30 commit(s) and 11 issue activity found in the last 90 days -- score normalized to 10 CII-Best-Practices :warning: 0 no effort to earn an OpenSSF best practices badge detected License :green_circle: 9 license file detected Signed-Releases :warning: -1 no releases found Token-Permissions :warning: 0 detected GitHub workflow tokens with excessive permissions Dangerous-Workflow :green_circle: 10 no dangerous workflow patterns detected Branch-Protection :green_circle: 8 branch protection is not maximal on development and all release branches Packaging :warning: -1 packaging workflow not detected Security-Policy :green_circle: 10 security policy file detected SAST :warning: 0 SAST tool is not run on all commits -- score normalized to 0 Binary-Artifacts :green_circle: 10 no binaries found in the repo Pinned-Dependencies :warning: 2 dependency not pinned by hash detected -- score normalized to 2 Fuzzing :warning: 0 project is not fuzzed Vulnerabilities :green_circle: 10 0 existing vulnerabilities detected
npm/@rollup/rollup-linux-x64-gnu	4.22.5	:green_circle: 6	Details Check Score Reason Code-Review :warning: 2 Found 5/18 approved changesets -- score normalized to 2 Maintained :green_circle: 10 30 commit(s) and 11 issue activity found in the last 90 days -- score normalized to 10 CII-Best-Practices :warning: 0 no effort to earn an OpenSSF best practices badge detected License :green_circle: 9 license file detected Signed-Releases :warning: -1 no releases found Token-Permissions :warning: 0 detected GitHub workflow tokens with excessive permissions Dangerous-Workflow :green_circle: 10 no dangerous workflow patterns detected Branch-Protection :green_circle: 8 branch protection is not maximal on development and all release branches Packaging :warning: -1 packaging workflow not detected Security-Policy :green_circle: 10 security policy file detected SAST :warning: 0 SAST tool is not run on all commits -- score normalized to 0 Binary-Artifacts :green_circle: 10 no binaries found in the repo Pinned-Dependencies :warning: 2 dependency not pinned by hash detected -- score normalized to 2 Fuzzing :warning: 0 project is not fuzzed Vulnerabilities :green_circle: 10 0 existing vulnerabilities detected
npm/@rollup/rollup-linux-x64-musl	4.22.5	:green_circle: 6	Details Check Score Reason Code-Review :warning: 2 Found 5/18 approved changesets -- score normalized to 2 Maintained :green_circle: 10 30 commit(s) and 11 issue activity found in the last 90 days -- score normalized to 10 CII-Best-Practices :warning: 0 no effort to earn an OpenSSF best practices badge detected License :green_circle: 9 license file detected Signed-Releases :warning: -1 no releases found Token-Permissions :warning: 0 detected GitHub workflow tokens with excessive permissions Dangerous-Workflow :green_circle: 10 no dangerous workflow patterns detected Branch-Protection :green_circle: 8 branch protection is not maximal on development and all release branches Packaging :warning: -1 packaging workflow not detected Security-Policy :green_circle: 10 security policy file detected SAST :warning: 0 SAST tool is not run on all commits -- score normalized to 0 Binary-Artifacts :green_circle: 10 no binaries found in the repo Pinned-Dependencies :warning: 2 dependency not pinned by hash detected -- score normalized to 2 Fuzzing :warning: 0 project is not fuzzed Vulnerabilities :green_circle: 10 0 existing vulnerabilities detected
npm/@rollup/rollup-win32-arm64-msvc	4.22.5	:green_circle: 6	Details Check Score Reason Code-Review :warning: 2 Found 5/18 approved changesets -- score normalized to 2 Maintained :green_circle: 10 30 commit(s) and 11 issue activity found in the last 90 days -- score normalized to 10 CII-Best-Practices :warning: 0 no effort to earn an OpenSSF best practices badge detected License :green_circle: 9 license file detected Signed-Releases :warning: -1 no releases found Token-Permissions :warning: 0 detected GitHub workflow tokens with excessive permissions Dangerous-Workflow :green_circle: 10 no dangerous workflow patterns detected Branch-Protection :green_circle: 8 branch protection is not maximal on development and all release branches Packaging :warning: -1 packaging workflow not detected Security-Policy :green_circle: 10 security policy file detected SAST :warning: 0 SAST tool is not run on all commits -- score normalized to 0 Binary-Artifacts :green_circle: 10 no binaries found in the repo Pinned-Dependencies :warning: 2 dependency not pinned by hash detected -- score normalized to 2 Fuzzing :warning: 0 project is not fuzzed Vulnerabilities :green_circle: 10 0 existing vulnerabilities detected
npm/@rollup/rollup-win32-ia32-msvc	4.22.5	:green_circle: 6	Details Check Score Reason Code-Review :warning: 2 Found 5/18 approved changesets -- score normalized to 2 Maintained :green_circle: 10 30 commit(s) and 11 issue activity found in the last 90 days -- score normalized to 10 CII-Best-Practices :warning: 0 no effort to earn an OpenSSF best practices badge detected License :green_circle: 9 license file detected Signed-Releases :warning: -1 no releases found Token-Permissions :warning: 0 detected GitHub workflow tokens with excessive permissions Dangerous-Workflow :green_circle: 10 no dangerous workflow patterns detected Branch-Protection :green_circle: 8 branch protection is not maximal on development and all release branches Packaging :warning: -1 packaging workflow not detected Security-Policy :green_circle: 10 security policy file detected SAST :warning: 0 SAST tool is not run on all commits -- score normalized to 0 Binary-Artifacts :green_circle: 10 no binaries found in the repo Pinned-Dependencies :warning: 2 dependency not pinned by hash detected -- score normalized to 2 Fuzzing :warning: 0 project is not fuzzed Vulnerabilities :green_circle: 10 0 existing vulnerabilities detected
npm/@rollup/rollup-win32-x64-msvc	4.22.5	:green_circle: 6	Details Check Score Reason Code-Review :warning: 2 Found 5/18 approved changesets -- score normalized to 2 Maintained :green_circle: 10 30 commit(s) and 11 issue activity found in the last 90 days -- score normalized to 10 CII-Best-Practices :warning: 0 no effort to earn an OpenSSF best practices badge detected License :green_circle: 9 license file detected Signed-Releases :warning: -1 no releases found Token-Permissions :warning: 0 detected GitHub workflow tokens with excessive permissions Dangerous-Workflow :green_circle: 10 no dangerous workflow patterns detected Branch-Protection :green_circle: 8 branch protection is not maximal on development and all release branches Packaging :warning: -1 packaging workflow not detected Security-Policy :green_circle: 10 security policy file detected SAST :warning: 0 SAST tool is not run on all commits -- score normalized to 0 Binary-Artifacts :green_circle: 10 no binaries found in the repo Pinned-Dependencies :warning: 2 dependency not pinned by hash detected -- score normalized to 2 Fuzzing :warning: 0 project is not fuzzed Vulnerabilities :green_circle: 10 0 existing vulnerabilities detected
npm/@types/estree	1.0.6	:green_circle: 7	Details Check Score Reason Code-Review :green_circle: 9 Found 29/30 approved changesets -- score normalized to 9 Maintained :green_circle: 10 30 commit(s) and 3 issue activity found in the last 90 days -- score normalized to 10 CII-Best-Practices :warning: 0 no effort to earn an OpenSSF best practices badge detected License :green_circle: 9 license file detected Signed-Releases :warning: -1 no releases found Branch-Protection :warning: -1 internal error: error during branchesHandler.setup: internal error: githubv4.Query: Resource not accessible by integration Packaging :warning: -1 packaging workflow not detected Dangerous-Workflow :green_circle: 10 no dangerous workflow patterns detected Token-Permissions :warning: 0 detected GitHub workflow tokens with excessive permissions Security-Policy :green_circle: 10 security policy file detected Vulnerabilities :green_circle: 10 0 existing vulnerabilities detected SAST :warning: 0 SAST tool is not run on all commits -- score normalized to 0 Binary-Artifacts :green_circle: 10 no binaries found in the repo Pinned-Dependencies :green_circle: 8 dependency not pinned by hash detected -- score normalized to 8 Fuzzing :warning: 0 project is not fuzzed
npm/@types/node	22.7.4	:green_circle: 7	Details Check Score Reason Code-Review :green_circle: 9 Found 29/30 approved changesets -- score normalized to 9 Maintained :green_circle: 10 30 commit(s) and 3 issue activity found in the last 90 days -- score normalized to 10 CII-Best-Practices :warning: 0 no effort to earn an OpenSSF best practices badge detected License :green_circle: 9 license file detected Signed-Releases :warning: -1 no releases found Branch-Protection :warning: -1 internal error: error during branchesHandler.setup: internal error: githubv4.Query: Resource not accessible by integration Packaging :warning: -1 packaging workflow not detected Dangerous-Workflow :green_circle: 10 no dangerous workflow patterns detected Token-Permissions :warning: 0 detected GitHub workflow tokens with excessive permissions Security-Policy :green_circle: 10 security policy file detected Vulnerabilities :green_circle: 10 0 existing vulnerabilities detected SAST :warning: 0 SAST tool is not run on all commits -- score normalized to 0 Binary-Artifacts :green_circle: 10 no binaries found in the repo Pinned-Dependencies :green_circle: 8 dependency not pinned by hash detected -- score normalized to 8 Fuzzing :warning: 0 project is not fuzzed
npm/rollup	4.22.5	:green_circle: 6	Details Check Score Reason Code-Review :warning: 2 Found 5/18 approved changesets -- score normalized to 2 Maintained :green_circle: 10 30 commit(s) and 11 issue activity found in the last 90 days -- score normalized to 10 CII-Best-Practices :warning: 0 no effort to earn an OpenSSF best practices badge detected License :green_circle: 9 license file detected Signed-Releases :warning: -1 no releases found Token-Permissions :warning: 0 detected GitHub workflow tokens with excessive permissions Dangerous-Workflow :green_circle: 10 no dangerous workflow patterns detected Branch-Protection :green_circle: 8 branch protection is not maximal on development and all release branches Packaging :warning: -1 packaging workflow not detected Security-Policy :green_circle: 10 security policy file detected SAST :warning: 0 SAST tool is not run on all commits -- score normalized to 0 Binary-Artifacts :green_circle: 10 no binaries found in the repo Pinned-Dependencies :warning: 2 dependency not pinned by hash detected -- score normalized to 2 Fuzzing :warning: 0 project is not fuzzed Vulnerabilities :green_circle: 10 0 existing vulnerabilities detected

Scanned Manifest Files

composer.lock

• php-stubs/wordpress-stubs@6.6.2
• php-stubs/wordpress-stubs@6.6.0

package-lock.json

• @rollup/rollup-android-arm-eabi@4.22.5
• @rollup/rollup-android-arm64@4.22.5
• @rollup/rollup-darwin-arm64@4.22.5
• @rollup/rollup-darwin-x64@4.22.5
• @rollup/rollup-linux-arm-gnueabihf@4.22.5
• @rollup/rollup-linux-arm-musleabihf@4.22.5
• @rollup/rollup-linux-arm64-gnu@4.22.5
• @rollup/rollup-linux-arm64-musl@4.22.5
• @rollup/rollup-linux-powerpc64le-gnu@4.22.5
• @rollup/rollup-linux-riscv64-gnu@4.22.5
• @rollup/rollup-linux-s390x-gnu@4.22.5
• @rollup/rollup-linux-x64-gnu@4.22.5
• @rollup/rollup-linux-x64-musl@4.22.5
• @rollup/rollup-win32-arm64-msvc@4.22.5
• @rollup/rollup-win32-ia32-msvc@4.22.5
• @rollup/rollup-win32-x64-msvc@4.22.5
• @types/estree@1.0.6
• @types/node@22.7.4
• rollup@4.22.5
• @rollup/rollup-android-arm-eabi@4.22.4
• @rollup/rollup-android-arm64@4.22.4
• @rollup/rollup-darwin-arm64@4.22.4
• @rollup/rollup-darwin-x64@4.22.4
• @rollup/rollup-linux-arm-gnueabihf@4.22.4
• @rollup/rollup-linux-arm-musleabihf@4.22.4
• @rollup/rollup-linux-arm64-gnu@4.22.4
• @rollup/rollup-linux-arm64-musl@4.22.4
• @rollup/rollup-linux-powerpc64le-gnu@4.22.4
• @rollup/rollup-linux-riscv64-gnu@4.22.4
• @rollup/rollup-linux-s390x-gnu@4.22.4
• @rollup/rollup-linux-x64-gnu@4.22.4
• @rollup/rollup-linux-x64-musl@4.22.4
• @rollup/rollup-win32-arm64-msvc@4.22.4
• @rollup/rollup-win32-ia32-msvc@4.22.4
• @rollup/rollup-win32-x64-msvc@4.22.4
• @types/estree@1.0.5
• @types/node@22.7.3
• rollup@4.22.4