Bump discord.js from 14.7.1 to 14.15.2

[dependabot[bot]]

Bumps discord.js from 14.7.1 to 14.15.2.

Release notes

Sourced from discord.js's releases.

14.15.2

Bug Fixes

• PollAnswer: FetchVoters route changed to MessageManager (#10251) (30d79e8)

14.15.1

Bug Fixes

• MessageManager: Poll methods don't need a channel id (#10249) (0474a43)

14.15.0

Bug Fixes

• Message: Not crosspostable if has a poll (#10246) (a6b9f1b)
• actions: Always emit message create for own messages (#10211) (798f28c)
• Embed: Address equals method issue (#10152) (ddc927f)
• types: Export ReadonlyCollection (#10184) (6cc5fa2)
• Anchor link for events (0efd1be)
• resolveColor: Address case for numbers (#10115) (3755e66)
• Invert deletable message types list (#10093) (42bc5d2)
• BaseClient: Fall back to userAgentAppendix (#10113) (b16647e)
• InteractionResponses: Check if ephemeral message flag is used (#10021) (62e31cb)
• Replace internal calls to Emoji#url (#10025) (941642a)
• Export "ESM" types when discord.js is imported in ESM land (#10009) (e412a22)
• website: Discord-api-types links, URL links and some minor doc issues (#9990) (57c414b)
• website: Cross package deprecated links (#9981) (802ec63)
• Minify mainlib docs json (#9963) (4b88306)
• website: Misc improvements (#9940) (b79351b)

Documentation

• Remove unused Locale typedef (#10191) (f1f2683)
• ActionRow: Fix deprecated message (#10130) (f67da74)
• ApplicationCommandPermissionsManager: Remove incorrect comment (#10123) (e9d6547)
• Split docs.api.json into multiple json files (597340f)
• Convert comment into private remark (#10097) (bfc7bb5)
• BaseInteraction: Correct return type of member (#10096) (f48787e)
• ThreadMember: Fix docblock async return type (#10058) (4824ac1)
• CategoryCreateChannelOptions: Update reference (#10031) (8ace6fa)
• resolvePartialEmoji: Add @internal to all overloads (#10033) (e245a39)
• PermissionOverwriteManager: PermissionsFlagsBit typo (#10004) (b992019)
• Fix links in @​deprecated tags (#9976) (9868772)

Features

• MessageManager: Poll methods (#10239) (6cf094c)
• Consumable entitlements (#10235) (9978870)
• Polls (#10185) (a1aeaeb)
• ClientUser: Add support for setting bot banner (#10176) (de14c92)
• GuildBanManager: Add bulkCreate() method (#10182) (b6bdd57)

... (truncated)

Changelog

Sourced from discord.js's changelog.

14.15.2 - (2024-05-05)

Bug Fixes

• PollAnswer: FetchVoters route changed to MessageManager (#10251) (30d79e8)

14.15.1 - (2024-05-04)

Bug Fixes

• MessageManager: Poll methods don't need a channel id (#10249) (0474a43)

14.15.0 - (2024-05-04)

Bug Fixes

• Message: Not crosspostable if has a poll (#10246) (a6b9f1b)
• actions: Always emit message create for own messages (#10211) (798f28c)
• Embed: Address equals method issue (#10152) (ddc927f)
• types: Export ReadonlyCollection (#10184) (6cc5fa2)
• Anchor link for events (0efd1be)
• resolveColor: Address case for numbers (#10115) (3755e66)
• Invert deletable message types list (#10093) (42bc5d2)
• BaseClient: Fall back to userAgentAppendix (#10113) (b16647e)
• InteractionResponses: Check if ephemeral message flag is used (#10021) (62e31cb)
• Replace internal calls to Emoji#url (#10025) (941642a)
• Export "ESM" types when discord.js is imported in ESM land (#10009) (e412a22)
• website: Discord-api-types links, URL links and some minor doc issues (#9990) (57c414b)
• website: Cross package deprecated links (#9981) (802ec63)
• Minify mainlib docs json (#9963) (4b88306)
• website: Misc improvements (#9940) (b79351b)

Documentation

• Remove unused Locale typedef (#10191) (f1f2683)
• ActionRow: Fix deprecated message (#10130) (f67da74)
• ApplicationCommandPermissionsManager: Remove incorrect comment (#10123) (e9d6547)
• Split docs.api.json into multiple json files (597340f)
• Convert comment into private remark (#10097) (bfc7bb5)
• BaseInteraction: Correct return type of member (#10096) (f48787e)
• ThreadMember: Fix docblock async return type (#10058) (4824ac1)
• CategoryCreateChannelOptions: Update reference (#10031) (8ace6fa)
• resolvePartialEmoji: Add @internal to all overloads (#10033) (e245a39)
• PermissionOverwriteManager: PermissionsFlagsBit typo (#10004) (b992019)
• Fix links in @​deprecated tags (#9976) (9868772)

Features

• MessageManager: Poll methods (#10239) (6cf094c)
• Consumable entitlements (#10235) (9978870)

... (truncated)

Commits

• 776880d chore: fix changelogs
• c05244a chore(discord.js): release discord.js@14.15.2
• 30d79e8 fix(PollAnswer): fetchVoters route changed to MessageManager (#10251)
• f2794e1 chore(discord.js): release discord.js@14.15.1 (#10250)
• 0474a43 fix(MessageManager): poll methods don't need a channel id (#10249)
• 1d27b3b chore: fix duplicated discord.js changelog
• a840861 chore(discord.js): release discord.js@14.15.0
• a6b9f1b fix(Message): not crosspostable if has a poll (#10246)
• cb961f5 types: add Poll to Message (#10245)
• 6cf094c feat(MessageManager): poll methods (#10239)
• Additional commits viewable in compare view

Maintainer changes

This version was pushed to npm by crawl, a new releaser for discord.js since your current version.

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

---

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR: - `@dependabot rebase` will rebase this PR - `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it - `@dependabot merge` will merge this PR after your CI passes on it - `@dependabot squash and merge` will squash and merge this PR after your CI passes on it - `@dependabot cancel merge` will cancel a previously requested merge and block automerging - `@dependabot reopen` will reopen this PR if it is closed - `@dependabot close` will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually - `@dependabot show ignore conditions` will show all of the ignore conditions of the specified dependency - `@dependabot ignore this major version` will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this minor version` will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this dependency` will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)

[github-actions[bot]]

Dependency Review

The following issues were found:

• ✅ 0 vulnerable package(s)
• ✅ 0 package(s) with incompatible licenses
• ✅ 0 package(s) with invalid SPDX license definitions
• ✅ 0 package(s) with unknown licenses.
• ⚠️ 1 packages with OpenSSF Scorecard issues.

See the Details below.

OpenSSF Scorecard

Scorecard details

Package	Version	Score	Details
npm/undici	5.28.3	:green_circle: 9	Details Check Score Reason Binary-Artifacts :green_circle: 8 binaries present in source code Branch-Protection :warning: -1 internal error: error during branchesHandler.setup: internal error: githubv4.Query: Resource not accessible by integration CI-Tests :green_circle: 9 28 out of 30 merged PRs checked by a CI test -- score normalized to 9 CII-Best-Practices :warning: 0 no effort to earn an OpenSSF best practices badge detected Code-Review :green_circle: 10 all changesets reviewed Contributors :green_circle: 10 94 different organizations found -- score normalized to 10 Dangerous-Workflow :green_circle: 10 no dangerous workflow patterns detected Dependency-Update-Tool :green_circle: 10 update tool detected Fuzzing :green_circle: 10 project is fuzzed License :green_circle: 10 license file detected Maintained :green_circle: 10 30 commit(s) out of 30 and 19 issue activity out of 30 found in the last 90 days -- score normalized to 10 Packaging :green_circle: 10 publishing workflow detected Pinned-Dependencies :green_circle: 3 dependency not pinned by hash detected -- score normalized to 3 SAST :green_circle: 9 SAST tool detected but not run on all commits Security-Policy :green_circle: 9 security policy file detected Signed-Releases :warning: -1 no releases found Token-Permissions :green_circle: 10 GitHub workflow tokens follow principle of least privilege Vulnerabilities :green_circle: 10 no vulnerabilities detected
npm/@discordjs/builders	1.8.1	:green_circle: 5.2	Details Check Score Reason Code-Review :green_circle: 9 Found 28/30 approved changesets -- score normalized to 9 Maintained :green_circle: 10 30 commit(s) and 6 issue activity found in the last 90 days -- score normalized to 10 CII-Best-Practices :warning: 0 no effort to earn an OpenSSF best practices badge detected License :green_circle: 10 license file detected Signed-Releases :warning: -1 no releases found Branch-Protection :warning: -1 internal error: error during branchesHandler.setup: internal error: githubv4.Query: Resource not accessible by integration Dangerous-Workflow :green_circle: 10 no dangerous workflow patterns detected Token-Permissions :warning: 0 detected GitHub workflow tokens with excessive permissions Binary-Artifacts :green_circle: 10 no binaries found in the repo Fuzzing :warning: 0 project is not fuzzed Security-Policy :warning: 0 security policy file not detected SAST :warning: 0 SAST tool is not run on all commits -- score normalized to 0 Packaging :green_circle: 10 packaging workflow detected Pinned-Dependencies :warning: 0 dependency not pinned by hash detected -- score normalized to 0 Vulnerabilities :warning: 1 9 existing vulnerabilities detected
npm/@discordjs/collection	1.5.3	:green_circle: 5.2	Details Check Score Reason Code-Review :green_circle: 9 Found 28/30 approved changesets -- score normalized to 9 Maintained :green_circle: 10 30 commit(s) and 6 issue activity found in the last 90 days -- score normalized to 10 CII-Best-Practices :warning: 0 no effort to earn an OpenSSF best practices badge detected License :green_circle: 10 license file detected Signed-Releases :warning: -1 no releases found Branch-Protection :warning: -1 internal error: error during branchesHandler.setup: internal error: githubv4.Query: Resource not accessible by integration Dangerous-Workflow :green_circle: 10 no dangerous workflow patterns detected Token-Permissions :warning: 0 detected GitHub workflow tokens with excessive permissions Binary-Artifacts :green_circle: 10 no binaries found in the repo Fuzzing :warning: 0 project is not fuzzed Security-Policy :warning: 0 security policy file not detected SAST :warning: 0 SAST tool is not run on all commits -- score normalized to 0 Packaging :green_circle: 10 packaging workflow detected Pinned-Dependencies :warning: 0 dependency not pinned by hash detected -- score normalized to 0 Vulnerabilities :warning: 1 9 existing vulnerabilities detected
npm/@discordjs/collection	2.1.0	:green_circle: 5.2	Details Check Score Reason Code-Review :green_circle: 9 Found 28/30 approved changesets -- score normalized to 9 Maintained :green_circle: 10 30 commit(s) and 6 issue activity found in the last 90 days -- score normalized to 10 CII-Best-Practices :warning: 0 no effort to earn an OpenSSF best practices badge detected License :green_circle: 10 license file detected Signed-Releases :warning: -1 no releases found Branch-Protection :warning: -1 internal error: error during branchesHandler.setup: internal error: githubv4.Query: Resource not accessible by integration Dangerous-Workflow :green_circle: 10 no dangerous workflow patterns detected Token-Permissions :warning: 0 detected GitHub workflow tokens with excessive permissions Binary-Artifacts :green_circle: 10 no binaries found in the repo Fuzzing :warning: 0 project is not fuzzed Security-Policy :warning: 0 security policy file not detected SAST :warning: 0 SAST tool is not run on all commits -- score normalized to 0 Packaging :green_circle: 10 packaging workflow detected Pinned-Dependencies :warning: 0 dependency not pinned by hash detected -- score normalized to 0 Vulnerabilities :warning: 1 9 existing vulnerabilities detected
npm/@discordjs/formatters	0.4.0	:green_circle: 5.2	Details Check Score Reason Code-Review :green_circle: 9 Found 28/30 approved changesets -- score normalized to 9 Maintained :green_circle: 10 30 commit(s) and 6 issue activity found in the last 90 days -- score normalized to 10 CII-Best-Practices :warning: 0 no effort to earn an OpenSSF best practices badge detected License :green_circle: 10 license file detected Signed-Releases :warning: -1 no releases found Branch-Protection :warning: -1 internal error: error during branchesHandler.setup: internal error: githubv4.Query: Resource not accessible by integration Dangerous-Workflow :green_circle: 10 no dangerous workflow patterns detected Token-Permissions :warning: 0 detected GitHub workflow tokens with excessive permissions Binary-Artifacts :green_circle: 10 no binaries found in the repo Fuzzing :warning: 0 project is not fuzzed Security-Policy :warning: 0 security policy file not detected SAST :warning: 0 SAST tool is not run on all commits -- score normalized to 0 Packaging :green_circle: 10 packaging workflow detected Pinned-Dependencies :warning: 0 dependency not pinned by hash detected -- score normalized to 0 Vulnerabilities :warning: 1 9 existing vulnerabilities detected
npm/@discordjs/rest	2.3.0	:green_circle: 5.2	Details Check Score Reason Code-Review :green_circle: 9 Found 28/30 approved changesets -- score normalized to 9 Maintained :green_circle: 10 30 commit(s) and 6 issue activity found in the last 90 days -- score normalized to 10 CII-Best-Practices :warning: 0 no effort to earn an OpenSSF best practices badge detected License :green_circle: 10 license file detected Signed-Releases :warning: -1 no releases found Branch-Protection :warning: -1 internal error: error during branchesHandler.setup: internal error: githubv4.Query: Resource not accessible by integration Dangerous-Workflow :green_circle: 10 no dangerous workflow patterns detected Token-Permissions :warning: 0 detected GitHub workflow tokens with excessive permissions Binary-Artifacts :green_circle: 10 no binaries found in the repo Fuzzing :warning: 0 project is not fuzzed Security-Policy :warning: 0 security policy file not detected SAST :warning: 0 SAST tool is not run on all commits -- score normalized to 0 Packaging :green_circle: 10 packaging workflow detected Pinned-Dependencies :warning: 0 dependency not pinned by hash detected -- score normalized to 0 Vulnerabilities :warning: 1 9 existing vulnerabilities detected
npm/@discordjs/util	1.1.0	:green_circle: 5.2	Details Check Score Reason Code-Review :green_circle: 9 Found 28/30 approved changesets -- score normalized to 9 Maintained :green_circle: 10 30 commit(s) and 6 issue activity found in the last 90 days -- score normalized to 10 CII-Best-Practices :warning: 0 no effort to earn an OpenSSF best practices badge detected License :green_circle: 10 license file detected Signed-Releases :warning: -1 no releases found Branch-Protection :warning: -1 internal error: error during branchesHandler.setup: internal error: githubv4.Query: Resource not accessible by integration Dangerous-Workflow :green_circle: 10 no dangerous workflow patterns detected Token-Permissions :warning: 0 detected GitHub workflow tokens with excessive permissions Binary-Artifacts :green_circle: 10 no binaries found in the repo Fuzzing :warning: 0 project is not fuzzed Security-Policy :warning: 0 security policy file not detected SAST :warning: 0 SAST tool is not run on all commits -- score normalized to 0 Packaging :green_circle: 10 packaging workflow detected Pinned-Dependencies :warning: 0 dependency not pinned by hash detected -- score normalized to 0 Vulnerabilities :warning: 1 9 existing vulnerabilities detected
npm/@discordjs/ws	1.1.0	:green_circle: 5.2	Details Check Score Reason Code-Review :green_circle: 9 Found 28/30 approved changesets -- score normalized to 9 Maintained :green_circle: 10 30 commit(s) and 6 issue activity found in the last 90 days -- score normalized to 10 CII-Best-Practices :warning: 0 no effort to earn an OpenSSF best practices badge detected License :green_circle: 10 license file detected Signed-Releases :warning: -1 no releases found Branch-Protection :warning: -1 internal error: error during branchesHandler.setup: internal error: githubv4.Query: Resource not accessible by integration Dangerous-Workflow :green_circle: 10 no dangerous workflow patterns detected Token-Permissions :warning: 0 detected GitHub workflow tokens with excessive permissions Binary-Artifacts :green_circle: 10 no binaries found in the repo Fuzzing :warning: 0 project is not fuzzed Security-Policy :warning: 0 security policy file not detected SAST :warning: 0 SAST tool is not run on all commits -- score normalized to 0 Packaging :green_circle: 10 packaging workflow detected Pinned-Dependencies :warning: 0 dependency not pinned by hash detected -- score normalized to 0 Vulnerabilities :warning: 1 9 existing vulnerabilities detected
npm/@sapphire/async-queue	1.5.2	:green_circle: 6	Details Check Score Reason Code-Review :warning: 2 Found 6/21 approved changesets -- score normalized to 2 Maintained :green_circle: 10 30 commit(s) and 1 issue activity found in the last 90 days -- score normalized to 10 CII-Best-Practices :warning: 0 no effort to earn an OpenSSF best practices badge detected License :green_circle: 10 license file detected Signed-Releases :warning: -1 no releases found Branch-Protection :warning: -1 internal error: error during branchesHandler.setup: internal error: githubv4.Query: Resource not accessible by integration Dangerous-Workflow :green_circle: 10 no dangerous workflow patterns detected Packaging :warning: -1 packaging workflow not detected Token-Permissions :warning: 0 detected GitHub workflow tokens with excessive permissions Binary-Artifacts :green_circle: 10 no binaries found in the repo Fuzzing :warning: 0 project is not fuzzed Security-Policy :green_circle: 10 security policy file detected SAST :green_circle: 10 SAST tool is run on all commits Vulnerabilities :green_circle: 6 4 existing vulnerabilities detected Pinned-Dependencies :warning: 0 dependency not pinned by hash detected -- score normalized to 0
npm/@sapphire/shapeshift	3.9.7	Unknown	Unknown
npm/@sapphire/snowflake	3.5.3	:green_circle: 6	Details Check Score Reason Code-Review :warning: 2 Found 6/21 approved changesets -- score normalized to 2 Maintained :green_circle: 10 30 commit(s) and 1 issue activity found in the last 90 days -- score normalized to 10 CII-Best-Practices :warning: 0 no effort to earn an OpenSSF best practices badge detected License :green_circle: 10 license file detected Signed-Releases :warning: -1 no releases found Branch-Protection :warning: -1 internal error: error during branchesHandler.setup: internal error: githubv4.Query: Resource not accessible by integration Dangerous-Workflow :green_circle: 10 no dangerous workflow patterns detected Packaging :warning: -1 packaging workflow not detected Token-Permissions :warning: 0 detected GitHub workflow tokens with excessive permissions Binary-Artifacts :green_circle: 10 no binaries found in the repo Fuzzing :warning: 0 project is not fuzzed Security-Policy :green_circle: 10 security policy file detected SAST :green_circle: 10 SAST tool is run on all commits Vulnerabilities :green_circle: 6 4 existing vulnerabilities detected Pinned-Dependencies :warning: 0 dependency not pinned by hash detected -- score normalized to 0
npm/@types/ws	8.5.10	:green_circle: 6.9	Details Check Score Reason Maintained :green_circle: 10 30 commit(s) and 4 issue activity found in the last 90 days -- score normalized to 10 Code-Review :green_circle: 8 Found 26/29 approved changesets -- score normalized to 8 CII-Best-Practices :warning: 0 no effort to earn an OpenSSF best practices badge detected License :green_circle: 9 license file detected Signed-Releases :warning: -1 no releases found Branch-Protection :warning: -1 internal error: error during branchesHandler.setup: internal error: githubv4.Query: Resource not accessible by integration Packaging :warning: -1 packaging workflow not detected Security-Policy :green_circle: 10 security policy file detected Dangerous-Workflow :green_circle: 10 no dangerous workflow patterns detected Token-Permissions :warning: 0 detected GitHub workflow tokens with excessive permissions Vulnerabilities :green_circle: 10 0 existing vulnerabilities detected SAST :warning: 0 SAST tool is not run on all commits -- score normalized to 0 Binary-Artifacts :green_circle: 10 no binaries found in the repo Pinned-Dependencies :green_circle: 8 dependency not pinned by hash detected -- score normalized to 8 Fuzzing :warning: 0 project is not fuzzed
npm/@vladfrangu/async_event_emitter	2.2.4	Unknown	Unknown
npm/discord-api-types	0.37.83	:green_circle: 4.9	Details Check Score Reason Code-Review :green_circle: 7 Found 8/11 approved changesets -- score normalized to 7 Maintained :green_circle: 10 30 commit(s) and 2 issue activity found in the last 90 days -- score normalized to 10 CII-Best-Practices :warning: 0 no effort to earn an OpenSSF best practices badge detected License :green_circle: 10 license file detected Branch-Protection :warning: -1 internal error: error during branchesHandler.setup: internal error: githubv4.Query: Resource not accessible by integration Signed-Releases :warning: -1 no releases found Packaging :warning: -1 packaging workflow not detected Dangerous-Workflow :green_circle: 10 no dangerous workflow patterns detected Token-Permissions :warning: 0 detected GitHub workflow tokens with excessive permissions Binary-Artifacts :green_circle: 10 no binaries found in the repo Fuzzing :warning: 0 project is not fuzzed Security-Policy :warning: 0 security policy file not detected SAST :warning: 0 SAST tool is not run on all commits -- score normalized to 0 Pinned-Dependencies :green_circle: 6 dependency not pinned by hash detected -- score normalized to 6 Vulnerabilities :warning: 0 11 existing vulnerabilities detected
npm/discord.js	14.15.2	:green_circle: 5.2	Details Check Score Reason Code-Review :green_circle: 9 Found 28/30 approved changesets -- score normalized to 9 Maintained :green_circle: 10 30 commit(s) and 6 issue activity found in the last 90 days -- score normalized to 10 CII-Best-Practices :warning: 0 no effort to earn an OpenSSF best practices badge detected License :green_circle: 10 license file detected Signed-Releases :warning: -1 no releases found Branch-Protection :warning: -1 internal error: error during branchesHandler.setup: internal error: githubv4.Query: Resource not accessible by integration Dangerous-Workflow :green_circle: 10 no dangerous workflow patterns detected Token-Permissions :warning: 0 detected GitHub workflow tokens with excessive permissions Binary-Artifacts :green_circle: 10 no binaries found in the repo Fuzzing :warning: 0 project is not fuzzed Security-Policy :warning: 0 security policy file not detected SAST :warning: 0 SAST tool is not run on all commits -- score normalized to 0 Packaging :green_circle: 10 packaging workflow detected Pinned-Dependencies :warning: 0 dependency not pinned by hash detected -- score normalized to 0 Vulnerabilities :warning: 1 9 existing vulnerabilities detected
npm/magic-bytes.js	1.10.0	Unknown	Unknown
npm/ts-mixer	6.0.4	:green_circle: 3.5	Details Check Score Reason Maintained :green_circle: 4 4 commit(s) and 1 issue activity found in the last 90 days -- score normalized to 4 Code-Review :warning: 2 Found 6/25 approved changesets -- score normalized to 2 CII-Best-Practices :warning: 0 no effort to earn an OpenSSF best practices badge detected Signed-Releases :warning: -1 no releases found License :green_circle: 10 license file detected Token-Permissions :warning: 0 detected GitHub workflow tokens with excessive permissions Binary-Artifacts :green_circle: 10 no binaries found in the repo Dangerous-Workflow :green_circle: 10 no dangerous workflow patterns detected Branch-Protection :warning: 0 branch protection not enabled on development/release branches Fuzzing :warning: 0 project is not fuzzed Security-Policy :warning: 0 security policy file not detected Packaging :green_circle: 10 packaging workflow detected SAST :warning: 0 SAST tool is not run on all commits -- score normalized to 0 Pinned-Dependencies :warning: 0 dependency not pinned by hash detected -- score normalized to 0 Vulnerabilities :warning: 0 24 existing vulnerabilities detected
npm/tslib	2.6.2	:green_circle: 5.5	Details Check Score Reason Maintained :warning: 0 0 commit(s) out of 30 and 1 issue activity out of 30 found in the last 90 days -- score normalized to 0 Code-Review :green_circle: 7 GitHub code reviews found for 23 commits out of the last 30 -- score normalized to 7 CII-Best-Practices :warning: 0 no badge detected Vulnerabilities :green_circle: 10 no vulnerabilities detected Dangerous-Workflow :green_circle: 10 no dangerous workflow patterns detected Packaging :warning: -1 no published package detected Token-Permissions :warning: 0 non read-only tokens detected in GitHub workflows License :green_circle: 10 license file detected Binary-Artifacts :green_circle: 10 no binaries found in the repo Pinned-Dependencies :green_circle: 9 dependency not pinned by hash detected -- score normalized to 9 Signed-Releases :warning: -1 no releases found Security-Policy :green_circle: 10 security policy file detected Branch-Protection :warning: 0 branch protection not enabled on development/release branches Dependency-Update-Tool :warning: 0 no update tool detected Fuzzing :warning: -1 internal error: internal error: Client.Search.Code: Search.Code: GET https://api.github.com/search/code?q=github.com+microsoft+tslib+repo%3Agoogle%2Foss-fuzz+in%3Afile+filename%3Aproject.yaml: 400 []
npm/undici	6.13.0	:green_circle: 9	Details Check Score Reason Binary-Artifacts :green_circle: 8 binaries present in source code Branch-Protection :warning: -1 internal error: error during branchesHandler.setup: internal error: githubv4.Query: Resource not accessible by integration CI-Tests :green_circle: 9 28 out of 30 merged PRs checked by a CI test -- score normalized to 9 CII-Best-Practices :warning: 0 no effort to earn an OpenSSF best practices badge detected Code-Review :green_circle: 10 all changesets reviewed Contributors :green_circle: 10 94 different organizations found -- score normalized to 10 Dangerous-Workflow :green_circle: 10 no dangerous workflow patterns detected Dependency-Update-Tool :green_circle: 10 update tool detected Fuzzing :green_circle: 10 project is fuzzed License :green_circle: 10 license file detected Maintained :green_circle: 10 30 commit(s) out of 30 and 19 issue activity out of 30 found in the last 90 days -- score normalized to 10 Packaging :green_circle: 10 publishing workflow detected Pinned-Dependencies :green_circle: 3 dependency not pinned by hash detected -- score normalized to 3 SAST :green_circle: 9 SAST tool detected but not run on all commits Security-Policy :green_circle: 9 security policy file detected Signed-Releases :warning: -1 no releases found Token-Permissions :green_circle: 10 GitHub workflow tokens follow principle of least privilege Vulnerabilities :green_circle: 10 no vulnerabilities detected
npm/ws	8.17.0	:green_circle: 6	Details Check Score Reason Maintained :green_circle: 10 11 commit(s) and 19 issue activity found in the last 90 days -- score normalized to 10 Code-Review :warning: 1 Found 4/30 approved changesets -- score normalized to 1 CII-Best-Practices :warning: 0 no effort to earn an OpenSSF best practices badge detected License :green_circle: 10 license file detected Signed-Releases :warning: -1 no releases found Dangerous-Workflow :green_circle: 10 no dangerous workflow patterns detected Packaging :warning: -1 packaging workflow not detected Security-Policy :green_circle: 10 security policy file detected Binary-Artifacts :green_circle: 10 no binaries found in the repo Branch-Protection :warning: 0 branch protection not enabled on development/release branches Token-Permissions :green_circle: 10 GitHub workflow tokens follow principle of least privilege Vulnerabilities :green_circle: 10 0 existing vulnerabilities detected Fuzzing :warning: 0 project is not fuzzed SAST :warning: 0 SAST tool is not run on all commits -- score normalized to 0 Pinned-Dependencies :warning: 0 dependency not pinned by hash detected -- score normalized to 0
npm/@discordjs/builders	1.4.0	:green_circle: 5.2	Details Check Score Reason Code-Review :green_circle: 9 Found 28/30 approved changesets -- score normalized to 9 Maintained :green_circle: 10 30 commit(s) and 6 issue activity found in the last 90 days -- score normalized to 10 CII-Best-Practices :warning: 0 no effort to earn an OpenSSF best practices badge detected License :green_circle: 10 license file detected Signed-Releases :warning: -1 no releases found Branch-Protection :warning: -1 internal error: error during branchesHandler.setup: internal error: githubv4.Query: Resource not accessible by integration Dangerous-Workflow :green_circle: 10 no dangerous workflow patterns detected Token-Permissions :warning: 0 detected GitHub workflow tokens with excessive permissions Binary-Artifacts :green_circle: 10 no binaries found in the repo Fuzzing :warning: 0 project is not fuzzed Security-Policy :warning: 0 security policy file not detected SAST :warning: 0 SAST tool is not run on all commits -- score normalized to 0 Packaging :green_circle: 10 packaging workflow detected Pinned-Dependencies :warning: 0 dependency not pinned by hash detected -- score normalized to 0 Vulnerabilities :warning: 1 9 existing vulnerabilities detected
npm/@discordjs/collection	1.3.0	:green_circle: 5.2	Details Check Score Reason Code-Review :green_circle: 9 Found 28/30 approved changesets -- score normalized to 9 Maintained :green_circle: 10 30 commit(s) and 6 issue activity found in the last 90 days -- score normalized to 10 CII-Best-Practices :warning: 0 no effort to earn an OpenSSF best practices badge detected License :green_circle: 10 license file detected Signed-Releases :warning: -1 no releases found Branch-Protection :warning: -1 internal error: error during branchesHandler.setup: internal error: githubv4.Query: Resource not accessible by integration Dangerous-Workflow :green_circle: 10 no dangerous workflow patterns detected Token-Permissions :warning: 0 detected GitHub workflow tokens with excessive permissions Binary-Artifacts :green_circle: 10 no binaries found in the repo Fuzzing :warning: 0 project is not fuzzed Security-Policy :warning: 0 security policy file not detected SAST :warning: 0 SAST tool is not run on all commits -- score normalized to 0 Packaging :green_circle: 10 packaging workflow detected Pinned-Dependencies :warning: 0 dependency not pinned by hash detected -- score normalized to 0 Vulnerabilities :warning: 1 9 existing vulnerabilities detected
npm/@discordjs/rest	1.5.0	:green_circle: 5.2	Details Check Score Reason Code-Review :green_circle: 9 Found 28/30 approved changesets -- score normalized to 9 Maintained :green_circle: 10 30 commit(s) and 6 issue activity found in the last 90 days -- score normalized to 10 CII-Best-Practices :warning: 0 no effort to earn an OpenSSF best practices badge detected License :green_circle: 10 license file detected Signed-Releases :warning: -1 no releases found Branch-Protection :warning: -1 internal error: error during branchesHandler.setup: internal error: githubv4.Query: Resource not accessible by integration Dangerous-Workflow :green_circle: 10 no dangerous workflow patterns detected Token-Permissions :warning: 0 detected GitHub workflow tokens with excessive permissions Binary-Artifacts :green_circle: 10 no binaries found in the repo Fuzzing :warning: 0 project is not fuzzed Security-Policy :warning: 0 security policy file not detected SAST :warning: 0 SAST tool is not run on all commits -- score normalized to 0 Packaging :green_circle: 10 packaging workflow detected Pinned-Dependencies :warning: 0 dependency not pinned by hash detected -- score normalized to 0 Vulnerabilities :warning: 1 9 existing vulnerabilities detected
npm/@discordjs/util	0.1.0	:green_circle: 5.2	Details Check Score Reason Code-Review :green_circle: 9 Found 28/30 approved changesets -- score normalized to 9 Maintained :green_circle: 10 30 commit(s) and 6 issue activity found in the last 90 days -- score normalized to 10 CII-Best-Practices :warning: 0 no effort to earn an OpenSSF best practices badge detected License :green_circle: 10 license file detected Signed-Releases :warning: -1 no releases found Branch-Protection :warning: -1 internal error: error during branchesHandler.setup: internal error: githubv4.Query: Resource not accessible by integration Dangerous-Workflow :green_circle: 10 no dangerous workflow patterns detected Token-Permissions :warning: 0 detected GitHub workflow tokens with excessive permissions Binary-Artifacts :green_circle: 10 no binaries found in the repo Fuzzing :warning: 0 project is not fuzzed Security-Policy :warning: 0 security policy file not detected SAST :warning: 0 SAST tool is not run on all commits -- score normalized to 0 Packaging :green_circle: 10 packaging workflow detected Pinned-Dependencies :warning: 0 dependency not pinned by hash detected -- score normalized to 0 Vulnerabilities :warning: 1 9 existing vulnerabilities detected
npm/@fastify/busboy	2.1.0	Unknown	Unknown
npm/@sapphire/async-queue	1.5.0	:green_circle: 6	Details Check Score Reason Code-Review :warning: 2 Found 6/21 approved changesets -- score normalized to 2 Maintained :green_circle: 10 30 commit(s) and 1 issue activity found in the last 90 days -- score normalized to 10 CII-Best-Practices :warning: 0 no effort to earn an OpenSSF best practices badge detected License :green_circle: 10 license file detected Signed-Releases :warning: -1 no releases found Branch-Protection :warning: -1 internal error: error during branchesHandler.setup: internal error: githubv4.Query: Resource not accessible by integration Dangerous-Workflow :green_circle: 10 no dangerous workflow patterns detected Packaging :warning: -1 packaging workflow not detected Token-Permissions :warning: 0 detected GitHub workflow tokens with excessive permissions Binary-Artifacts :green_circle: 10 no binaries found in the repo Fuzzing :warning: 0 project is not fuzzed Security-Policy :green_circle: 10 security policy file detected SAST :green_circle: 10 SAST tool is run on all commits Vulnerabilities :green_circle: 6 4 existing vulnerabilities detected Pinned-Dependencies :warning: 0 dependency not pinned by hash detected -- score normalized to 0
npm/@sapphire/shapeshift	3.8.1	Unknown	Unknown
npm/@sapphire/snowflake	3.4.0	:green_circle: 6	Details Check Score Reason Code-Review :warning: 2 Found 6/21 approved changesets -- score normalized to 2 Maintained :green_circle: 10 30 commit(s) and 1 issue activity found in the last 90 days -- score normalized to 10 CII-Best-Practices :warning: 0 no effort to earn an OpenSSF best practices badge detected License :green_circle: 10 license file detected Signed-Releases :warning: -1 no releases found Branch-Protection :warning: -1 internal error: error during branchesHandler.setup: internal error: githubv4.Query: Resource not accessible by integration Dangerous-Workflow :green_circle: 10 no dangerous workflow patterns detected Packaging :warning: -1 packaging workflow not detected Token-Permissions :warning: 0 detected GitHub workflow tokens with excessive permissions Binary-Artifacts :green_circle: 10 no binaries found in the repo Fuzzing :warning: 0 project is not fuzzed Security-Policy :green_circle: 10 security policy file detected SAST :green_circle: 10 SAST tool is run on all commits Vulnerabilities :green_circle: 6 4 existing vulnerabilities detected Pinned-Dependencies :warning: 0 dependency not pinned by hash detected -- score normalized to 0
npm/@tokenizer/token	0.3.0	:green_circle: 3	Details Check Score Reason Code-Review :warning: 0 Found 0/11 approved changesets -- score normalized to 0 Maintained :warning: 0 0 commit(s) and 0 issue activity found in the last 90 days -- score normalized to 0 CII-Best-Practices :warning: 0 no effort to earn an OpenSSF best practices badge detected Signed-Releases :warning: -1 no releases found Packaging :warning: -1 packaging workflow not detected Binary-Artifacts :green_circle: 10 no binaries found in the repo Pinned-Dependencies :warning: -1 no dependencies found Dangerous-Workflow :warning: -1 no workflows found Token-Permissions :warning: -1 No tokens found License :warning: 0 license file not detected Fuzzing :warning: 0 project is not fuzzed Branch-Protection :warning: -1 internal error: error during branchesHandler.setup: internal error: githubv4.Query: Resource not accessible by integration Vulnerabilities :green_circle: 10 0 existing vulnerabilities detected SAST :warning: 0 SAST tool is not run on all commits -- score normalized to 0 Security-Policy :warning: 0 security policy file not detected
npm/@types/ws	8.5.3	:green_circle: 6.9	Details Check Score Reason Maintained :green_circle: 10 30 commit(s) and 4 issue activity found in the last 90 days -- score normalized to 10 Code-Review :green_circle: 8 Found 26/29 approved changesets -- score normalized to 8 CII-Best-Practices :warning: 0 no effort to earn an OpenSSF best practices badge detected License :green_circle: 9 license file detected Signed-Releases :warning: -1 no releases found Branch-Protection :warning: -1 internal error: error during branchesHandler.setup: internal error: githubv4.Query: Resource not accessible by integration Packaging :warning: -1 packaging workflow not detected Security-Policy :green_circle: 10 security policy file detected Dangerous-Workflow :green_circle: 10 no dangerous workflow patterns detected Token-Permissions :warning: 0 detected GitHub workflow tokens with excessive permissions Vulnerabilities :green_circle: 10 0 existing vulnerabilities detected SAST :warning: 0 SAST tool is not run on all commits -- score normalized to 0 Binary-Artifacts :green_circle: 10 no binaries found in the repo Pinned-Dependencies :green_circle: 8 dependency not pinned by hash detected -- score normalized to 8 Fuzzing :warning: 0 project is not fuzzed
npm/discord-api-types	0.37.24	:green_circle: 4.9	Details Check Score Reason Code-Review :green_circle: 7 Found 8/11 approved changesets -- score normalized to 7 Maintained :green_circle: 10 30 commit(s) and 2 issue activity found in the last 90 days -- score normalized to 10 CII-Best-Practices :warning: 0 no effort to earn an OpenSSF best practices badge detected License :green_circle: 10 license file detected Branch-Protection :warning: -1 internal error: error during branchesHandler.setup: internal error: githubv4.Query: Resource not accessible by integration Signed-Releases :warning: -1 no releases found Packaging :warning: -1 packaging workflow not detected Dangerous-Workflow :green_circle: 10 no dangerous workflow patterns detected Token-Permissions :warning: 0 detected GitHub workflow tokens with excessive permissions Binary-Artifacts :green_circle: 10 no binaries found in the repo Fuzzing :warning: 0 project is not fuzzed Security-Policy :warning: 0 security policy file not detected SAST :warning: 0 SAST tool is not run on all commits -- score normalized to 0 Pinned-Dependencies :green_circle: 6 dependency not pinned by hash detected -- score normalized to 6 Vulnerabilities :warning: 0 11 existing vulnerabilities detected
npm/discord.js	14.7.1	:green_circle: 5.2	Details Check Score Reason Code-Review :green_circle: 9 Found 28/30 approved changesets -- score normalized to 9 Maintained :green_circle: 10 30 commit(s) and 6 issue activity found in the last 90 days -- score normalized to 10 CII-Best-Practices :warning: 0 no effort to earn an OpenSSF best practices badge detected License :green_circle: 10 license file detected Signed-Releases :warning: -1 no releases found Branch-Protection :warning: -1 internal error: error during branchesHandler.setup: internal error: githubv4.Query: Resource not accessible by integration Dangerous-Workflow :green_circle: 10 no dangerous workflow patterns detected Token-Permissions :warning: 0 detected GitHub workflow tokens with excessive permissions Binary-Artifacts :green_circle: 10 no binaries found in the repo Fuzzing :warning: 0 project is not fuzzed Security-Policy :warning: 0 security policy file not detected SAST :warning: 0 SAST tool is not run on all commits -- score normalized to 0 Packaging :green_circle: 10 packaging workflow detected Pinned-Dependencies :warning: 0 dependency not pinned by hash detected -- score normalized to 0 Vulnerabilities :warning: 1 9 existing vulnerabilities detected
npm/file-type	18.0.0	:green_circle: 4	Details Check Score Reason Code-Review :green_circle: 5 Found 17/30 approved changesets -- score normalized to 5 Maintained :warning: 2 0 commit(s) and 3 issue activity found in the last 90 days -- score normalized to 2 CII-Best-Practices :warning: 0 no effort to earn an OpenSSF best practices badge detected License :green_circle: 10 license file detected Signed-Releases :warning: -1 no releases found Security-Policy :green_circle: 10 security policy file detected Dangerous-Workflow :green_circle: 10 no dangerous workflow patterns detected Packaging :warning: -1 packaging workflow not detected Token-Permissions :warning: 0 detected GitHub workflow tokens with excessive permissions Branch-Protection :warning: 0 branch protection not enabled on development/release branches SAST :warning: 0 SAST tool is not run on all commits -- score normalized to 0 Binary-Artifacts :warning: 2 binaries present in source code Vulnerabilities :green_circle: 10 0 existing vulnerabilities detected Fuzzing :warning: 0 project is not fuzzed Pinned-Dependencies :warning: 0 dependency not pinned by hash detected -- score normalized to 0
npm/peek-readable	5.0.0	:green_circle: 3.3	Details Check Score Reason Maintained :warning: 0 0 commit(s) and 0 issue activity found in the last 90 days -- score normalized to 0 Code-Review :warning: 0 Found 0/17 approved changesets -- score normalized to 0 CII-Best-Practices :warning: 0 no effort to earn an OpenSSF best practices badge detected License :green_circle: 10 license file detected Signed-Releases :warning: -1 no releases found Dangerous-Workflow :green_circle: 10 no dangerous workflow patterns detected Binary-Artifacts :green_circle: 10 no binaries found in the repo Token-Permissions :warning: 0 detected GitHub workflow tokens with excessive permissions Packaging :warning: -1 packaging workflow not detected Branch-Protection :warning: 0 branch protection not enabled on development/release branches Fuzzing :warning: 0 project is not fuzzed Security-Policy :warning: 0 security policy file not detected SAST :green_circle: 7 SAST tool detected but not run on all commits Vulnerabilities :green_circle: 4 6 existing vulnerabilities detected Pinned-Dependencies :warning: 0 dependency not pinned by hash detected -- score normalized to 0
npm/readable-web-to-node-stream	3.0.2	:warning: 2.2	Details Check Score Reason Code-Review :warning: 0 Found 0/18 approved changesets -- score normalized to 0 Maintained :warning: 0 0 commit(s) and 0 issue activity found in the last 90 days -- score normalized to 0 CII-Best-Practices :warning: 0 no effort to earn an OpenSSF best practices badge detected Signed-Releases :warning: -1 no releases found Binary-Artifacts :green_circle: 10 no binaries found in the repo Packaging :warning: -1 packaging workflow not detected Dangerous-Workflow :green_circle: 10 no dangerous workflow patterns detected License :warning: 0 license file not detected Token-Permissions :warning: 0 detected GitHub workflow tokens with excessive permissions Branch-Protection :warning: 0 branch protection not enabled on development/release branches Fuzzing :warning: 0 project is not fuzzed Security-Policy :warning: 0 security policy file not detected Pinned-Dependencies :warning: 0 dependency not pinned by hash detected -- score normalized to 0 SAST :warning: 0 SAST tool is not run on all commits -- score normalized to 0 Vulnerabilities :warning: 0 23 existing vulnerabilities detected
npm/strtok3	7.0.0	:green_circle: 3.7	Details Check Score Reason Code-Review :warning: 0 Found 0/16 approved changesets -- score normalized to 0 Maintained :warning: 0 0 commit(s) and 0 issue activity found in the last 90 days -- score normalized to 0 CII-Best-Practices :warning: 0 no effort to earn an OpenSSF best practices badge detected License :green_circle: 10 license file detected Dangerous-Workflow :green_circle: 10 no dangerous workflow patterns detected Binary-Artifacts :green_circle: 10 no binaries found in the repo Packaging :warning: -1 packaging workflow not detected Signed-Releases :warning: -1 no releases found Token-Permissions :warning: 0 detected GitHub workflow tokens with excessive permissions Branch-Protection :warning: -1 internal error: error during branchesHandler.setup: internal error: githubv4.Query: Resource not accessible by integration Fuzzing :warning: 0 project is not fuzzed Security-Policy :warning: 0 security policy file not detected SAST :green_circle: 7 SAST tool detected but not run on all commits Pinned-Dependencies :warning: 0 dependency not pinned by hash detected -- score normalized to 0 Vulnerabilities :green_circle: 4 6 existing vulnerabilities detected
npm/token-types	5.0.1	:green_circle: 3.8	Details Check Score Reason Code-Review :warning: 0 Found 0/17 approved changesets -- score normalized to 0 Maintained :warning: 0 0 commit(s) and 0 issue activity found in the last 90 days -- score normalized to 0 CII-Best-Practices :warning: 0 no effort to earn an OpenSSF best practices badge detected License :green_circle: 10 license file detected Branch-Protection :warning: -1 internal error: error during branchesHandler.setup: internal error: githubv4.Query: Resource not accessible by integration Dangerous-Workflow :green_circle: 10 no dangerous workflow patterns detected Packaging :warning: -1 packaging workflow not detected Binary-Artifacts :green_circle: 10 no binaries found in the repo Token-Permissions :warning: 0 detected GitHub workflow tokens with excessive permissions Signed-Releases :warning: -1 no releases found Fuzzing :warning: 0 project is not fuzzed Security-Policy :warning: 0 security policy file not detected SAST :green_circle: 7 SAST tool detected but not run on all commits Pinned-Dependencies :warning: 0 dependency not pinned by hash detected -- score normalized to 0 Vulnerabilities :green_circle: 5 5 existing vulnerabilities detected
npm/ts-mixer	6.0.2	:green_circle: 3.5	Details Check Score Reason Maintained :green_circle: 4 4 commit(s) and 1 issue activity found in the last 90 days -- score normalized to 4 Code-Review :warning: 2 Found 6/25 approved changesets -- score normalized to 2 CII-Best-Practices :warning: 0 no effort to earn an OpenSSF best practices badge detected Signed-Releases :warning: -1 no releases found License :green_circle: 10 license file detected Token-Permissions :warning: 0 detected GitHub workflow tokens with excessive permissions Binary-Artifacts :green_circle: 10 no binaries found in the repo Dangerous-Workflow :green_circle: 10 no dangerous workflow patterns detected Branch-Protection :warning: 0 branch protection not enabled on development/release branches Fuzzing :warning: 0 project is not fuzzed Security-Policy :warning: 0 security policy file not detected Packaging :green_circle: 10 packaging workflow detected SAST :warning: 0 SAST tool is not run on all commits -- score normalized to 0 Pinned-Dependencies :warning: 0 dependency not pinned by hash detected -- score normalized to 0 Vulnerabilities :warning: 0 24 existing vulnerabilities detected
npm/tslib	2.4.1	:green_circle: 5.5	Details Check Score Reason Maintained :warning: 0 0 commit(s) out of 30 and 1 issue activity out of 30 found in the last 90 days -- score normalized to 0 Code-Review :green_circle: 7 GitHub code reviews found for 23 commits out of the last 30 -- score normalized to 7 CII-Best-Practices :warning: 0 no badge detected Vulnerabilities :green_circle: 10 no vulnerabilities detected Dangerous-Workflow :green_circle: 10 no dangerous workflow patterns detected Packaging :warning: -1 no published package detected Token-Permissions :warning: 0 non read-only tokens detected in GitHub workflows License :green_circle: 10 license file detected Binary-Artifacts :green_circle: 10 no binaries found in the repo Pinned-Dependencies :green_circle: 9 dependency not pinned by hash detected -- score normalized to 9 Signed-Releases :warning: -1 no releases found Security-Policy :green_circle: 10 security policy file detected Branch-Protection :warning: 0 branch protection not enabled on development/release branches Dependency-Update-Tool :warning: 0 no update tool detected Fuzzing :warning: -1 internal error: internal error: Client.Search.Code: Search.Code: GET https://api.github.com/search/code?q=github.com+microsoft+tslib+repo%3Agoogle%2Foss-fuzz+in%3Afile+filename%3Aproject.yaml: 400 []
npm/ws	8.11.0	:green_circle: 6	Details Check Score Reason Maintained :green_circle: 10 11 commit(s) and 19 issue activity found in the last 90 days -- score normalized to 10 Code-Review :warning: 1 Found 4/30 approved changesets -- score normalized to 1 CII-Best-Practices :warning: 0 no effort to earn an OpenSSF best practices badge detected License :green_circle: 10 license file detected Signed-Releases :warning: -1 no releases found Dangerous-Workflow :green_circle: 10 no dangerous workflow patterns detected Packaging :warning: -1 packaging workflow not detected Security-Policy :green_circle: 10 security policy file detected Binary-Artifacts :green_circle: 10 no binaries found in the repo Branch-Protection :warning: 0 branch protection not enabled on development/release branches Token-Permissions :green_circle: 10 GitHub workflow tokens follow principle of least privilege Vulnerabilities :green_circle: 10 0 existing vulnerabilities detected Fuzzing :warning: 0 project is not fuzzed SAST :warning: 0 SAST tool is not run on all commits -- score normalized to 0 Pinned-Dependencies :warning: 0 dependency not pinned by hash detected -- score normalized to 0
npm/discord.js	^14.15.2	:green_circle: 5.2	Details Check Score Reason Code-Review :green_circle: 9 Found 28/30 approved changesets -- score normalized to 9 Maintained :green_circle: 10 30 commit(s) and 6 issue activity found in the last 90 days -- score normalized to 10 CII-Best-Practices :warning: 0 no effort to earn an OpenSSF best practices badge detected License :green_circle: 10 license file detected Signed-Releases :warning: -1 no releases found Branch-Protection :warning: -1 internal error: error during branchesHandler.setup: internal error: githubv4.Query: Resource not accessible by integration Dangerous-Workflow :green_circle: 10 no dangerous workflow patterns detected Token-Permissions :warning: 0 detected GitHub workflow tokens with excessive permissions Binary-Artifacts :green_circle: 10 no binaries found in the repo Fuzzing :warning: 0 project is not fuzzed Security-Policy :warning: 0 security policy file not detected SAST :warning: 0 SAST tool is not run on all commits -- score normalized to 0 Packaging :green_circle: 10 packaging workflow detected Pinned-Dependencies :warning: 0 dependency not pinned by hash detected -- score normalized to 0 Vulnerabilities :warning: 1 9 existing vulnerabilities detected
npm/discord.js	^14.7.1	:green_circle: 5.2	Details Check Score Reason Code-Review :green_circle: 9 Found 28/30 approved changesets -- score normalized to 9 Maintained :green_circle: 10 30 commit(s) and 6 issue activity found in the last 90 days -- score normalized to 10 CII-Best-Practices :warning: 0 no effort to earn an OpenSSF best practices badge detected License :green_circle: 10 license file detected Signed-Releases :warning: -1 no releases found Branch-Protection :warning: -1 internal error: error during branchesHandler.setup: internal error: githubv4.Query: Resource not accessible by integration Dangerous-Workflow :green_circle: 10 no dangerous workflow patterns detected Token-Permissions :warning: 0 detected GitHub workflow tokens with excessive permissions Binary-Artifacts :green_circle: 10 no binaries found in the repo Fuzzing :warning: 0 project is not fuzzed Security-Policy :warning: 0 security policy file not detected SAST :warning: 0 SAST tool is not run on all commits -- score normalized to 0 Packaging :green_circle: 10 packaging workflow detected Pinned-Dependencies :warning: 0 dependency not pinned by hash detected -- score normalized to 0 Vulnerabilities :warning: 1 9 existing vulnerabilities detected

Scanned Manifest Files

package-lock.json

• undici@5.28.3
• @discordjs/builders@1.8.1
• @discordjs/collection@1.5.3
• @discordjs/collection@2.1.0
• @discordjs/formatters@0.4.0
• @discordjs/rest@2.3.0
• @discordjs/util@1.1.0
• @discordjs/ws@1.1.0
• @sapphire/async-queue@1.5.2
• @sapphire/shapeshift@3.9.7
• @sapphire/snowflake@3.5.3
• @types/ws@8.5.10
• @vladfrangu/async_event_emitter@2.2.4
• discord-api-types@0.37.83
• discord.js@14.15.2
• magic-bytes.js@1.10.0
• ts-mixer@6.0.4
• tslib@2.6.2
• undici@6.13.0
• ws@8.17.0
• @discordjs/builders@1.4.0
• @discordjs/collection@1.3.0
• @discordjs/rest@1.5.0
• @discordjs/util@0.1.0
• @fastify/busboy@2.1.0
• @sapphire/async-queue@1.5.0
• @sapphire/shapeshift@3.8.1
• @sapphire/snowflake@3.4.0
• @tokenizer/token@0.3.0
• @types/ws@8.5.3
• discord-api-types@0.37.24
• discord.js@14.7.1
• file-type@18.0.0
• peek-readable@5.0.0
• readable-web-to-node-stream@3.0.2
• strtok3@7.0.0
• token-types@5.0.1
• ts-mixer@6.0.2
• tslib@2.4.1
• ws@8.11.0

package.json

• discord.js@^14.15.2
• discord.js@^14.7.1