fix: fixed vulnerabilities #13
Merged
StepSecurity Actions Security / StepSecurity Required Checks
succeeded
Dec 12, 2025 in 4s
StepSecurity Required Checks
Finished StepSecurity Required Checks
- NPM Package Cooldown Check - Fails if any package version in the PR was released within the configured cooldown period, helping to avoid brand-new (and potentially unreviewed or malicious) releases
- Pwn Request Vulnerabilities Check - Checks for Pwn Request vulnerabilities in the PR via risky triggers
- Script Injection Check - Checks for script injection vulnerabilities in the PR
- NPM Compromised Packages Check - Checks for compromised npm package versions in the PR
Details
✅ Pwn Request Vulnerabilities Check
No Pwn Request vulnerabilities found in this PR.
✅ Script Injection Vulnerabilities Check
No Script Injection vulnerabilities found in this PR.
✅ NPM Compromised Packages Check
No Compromised npm packages are added in current PR.
✅ NPM Package Cooldown Check
No npm package upgrades to recent releases found in current PR.
The following npm packages are inspected in current PR
| Package Name | Previous Version | Current Version | file | Current Version Release Date |
|---|---|---|---|---|
| @docker/actions-toolkit | 0.63.0 | 0.69.0 | package.json | 2025-12-02T16:40:11Z |
| js-yaml | 4.1.0 | 4.1.1 | package.json | 2025-11-12T15:18:03Z |
| jest | 29.7.0 | 30.2.0 | package.json | 2025-09-28T07:33:12Z |
⏲️ History
Previous invocation results of same check:
Loading