Bump @actions/artifact from 1.1.2 to 2.2.1 #160
dependabot[bot]dependency-review.yml
on: pull_request
dependency-review
23s
Annotations
1 error and 6 warnings
|
dependency-review
Dependency review detected vulnerable packages.
|
|
dependency-review
npm/twirp-ts has an OpenSSF Scorecard of 2.7, which is less than this repository's threshold of 3.
|
|
dependency-review
npm/signal-exit has an OpenSSF Scorecard of 2.9, which is less than this repository's threshold of 3.
|
|
dependency-review
npm/graceful-fs has an OpenSSF Scorecard of 2.8, which is less than this repository's threshold of 3.
|
|
dependency-review
npm/event-target-shim has an OpenSSF Scorecard of 2.7, which is less than this repository's threshold of 3.
|
|
dependency-review
npm/core-util-is has an OpenSSF Scorecard of 1.7, which is less than this repository's threshold of 3.
|
|
dependency-review
npm/bottleneck has an OpenSSF Scorecard of 1.9, which is less than this repository's threshold of 3.
|