chore(deps-dev): bump style-dictionary from 3.9.2 to 4.2.0 #978
dependabot[bot]pull-request.yml
on: pull_request
auto-merge
/
dependabot
4s
dependency-review
/
dependency-review
10s
labeler
/
triage
3s
Matrix: codeql / Analyze
Annotations
10 warnings
|
labeler / triage
ubuntu-latest pipelines will use ubuntu-24.04 soon. For more details, see https://github.com/actions/runner-images/issues/10636
|
|
auto-merge / dependabot
ubuntu-latest pipelines will use ubuntu-24.04 soon. For more details, see https://github.com/actions/runner-images/issues/10636
|
|
dependency-review / dependency-review
ubuntu-latest pipelines will use ubuntu-24.04 soon. For more details, see https://github.com/actions/runner-images/issues/10636
|
|
OpenSSF Scorecard Warning
npm/deepmerge has an OpenSSF Scorecard of 2.4, which is less than this repository's threshold of 3.
|
|
OpenSSF Scorecard Warning
npm/find-yarn-workspace-root has an OpenSSF Scorecard of 2.5, which is less than this repository's threshold of 3.
|
|
OpenSSF Scorecard Warning
npm/hyperdyperid has an OpenSSF Scorecard of 1.7, which is less than this repository's threshold of 3.
|
|
OpenSSF Scorecard Warning
npm/patch-package has an OpenSSF Scorecard of 2.5, which is less than this repository's threshold of 3.
|
|
codeql / Analyze (javascript)
ubuntu-latest pipelines will use ubuntu-24.04 soon. For more details, see https://github.com/actions/runner-images/issues/10636
|
|
codeql / Analyze (javascript)
1 issue was detected with this workflow: Please specify an on.push hook to analyze and see code scanning alerts from the default branch on the Security tab.
|
|
codeql / Analyze (javascript)
Unable to validate code scanning workflow: MissingPushHook
|