fix: Resolve security vulnerabilities #31
StepSecurity Required Checks
Finished StepSecurity Required Checks
- NPM Compromised Packages Check - Checks for compromised npm package versions in the PR
- NPM Package Cooldown Check - Fails if any package version in the PR was released within the configured cooldown period, helping to avoid brand-new (and potentially unreviewed or malicious) releases
- PyPI Compromised Packages Check - Checks for compromised PyPI package versions in the PR
- PyPI Package Cooldown Check - Fails if any PyPI package version in the PR was released within the configured cooldown period
- Pwn Request Vulnerabilities Check - Checks for Pwn Request vulnerabilities in the PR via risky triggers
- Script Injection Check - Checks for script injection vulnerabilities in the PR
Details
🔐 Approve Check Run
One or more security checks failed. To approve this check run, click here.
❌ NPM Package Cooldown Check
The following npm packages added in current PR are recent versions(not older than 2 days). This check will pass at 2026-04-23T17:24:19Z
✅ Script Injection Vulnerabilities Check
No Script Injection vulnerabilities found in this PR.
✅ Pwn Request Vulnerabilities Check
No Pwn Request vulnerabilities found in this PR.
✅ PyPI Package Cooldown Check
No PyPI package upgrades to recent releases found in current PR.
✅ PyPI Compromised Packages Check
No compromised PyPI package versions found in current PR.
✅ NPM Compromised Packages Check
No Compromised npm packages are added in current PR.
⏲️ History
Previous invocation results of same check:
🔐 Approve Check Run
One or more security checks failed. To approve this check run, click here.
❌ NPM Package Cooldown Check
The following npm packages added in current PR are recent versions(not older than 2 days). This check will pass at 2026-04-23T17:24:19Z
✅ Script Injection Vulnerabilities Check
No Script Injection vulnerabilities found in this PR.
✅ Pwn Request Vulnerabilities Check
No Pwn Request vulnerabilities found in this PR.
✅ PyPI Compromised Packages Check
No compromised PyPI package versions found in current PR.
✅ PyPI Package Cooldown Check
No PyPI package upgrades to recent releases found in current PR.
✅ NPM Compromised Packages Check
No Compromised npm packages are added in current PR.