Prince/ bundle generator

[prince-deriv]

No description provided.

[github-actions]

Dependency Review

✅ No vulnerabilities or license issues or OpenSSF Scorecard issues found.

OpenSSF Scorecard

Package	Version	Score	Details
actions/actions/checkout	3.*.*	🟢 6.9	Details Check Score Reason Code-Review 🟢 10 all changesets reviewed Maintained 🟢 5 6 commit(s) and 1 issue activity found in the last 90 days -- score normalized to 5 CII-Best-Practices ⚠️ 0 no effort to earn an OpenSSF best practices badge detected License 🟢 10 license file detected Signed-Releases ⚠️ -1 no releases found Dangerous-Workflow 🟢 10 no dangerous workflow patterns detected Binary-Artifacts 🟢 10 no binaries found in the repo Token-Permissions ⚠️ 0 detected GitHub workflow tokens with excessive permissions Branch-Protection ⚠️ -1 internal error: error during branchesHandler.setup: internal error: githubv4.Query: Resource not accessible by integration Fuzzing ⚠️ 0 project is not fuzzed Pinned-Dependencies 🟢 3 dependency not pinned by hash detected -- score normalized to 3 Security-Policy 🟢 9 security policy file detected Packaging 🟢 10 packaging workflow detected SAST 🟢 9 SAST tool detected but not run on all commits Vulnerabilities 🟢 9 1 existing vulnerabilities detected
actions/actions/setup-node	3.*.*	🟢 5.6	Details Check Score Reason Maintained 🟢 4 5 commit(s) and 0 issue activity found in the last 90 days -- score normalized to 4 Code-Review 🟢 10 all changesets reviewed CII-Best-Practices ⚠️ 0 no effort to earn an OpenSSF best practices badge detected License 🟢 10 license file detected Signed-Releases ⚠️ -1 no releases found Branch-Protection ⚠️ -1 internal error: error during branchesHandler.setup: internal error: githubv4.Query: Resource not accessible by integration Packaging ⚠️ -1 packaging workflow not detected Binary-Artifacts 🟢 9 binaries present in source code Dangerous-Workflow 🟢 10 no dangerous workflow patterns detected Token-Permissions ⚠️ 0 detected GitHub workflow tokens with excessive permissions Pinned-Dependencies ⚠️ 0 dependency not pinned by hash detected -- score normalized to 0 Fuzzing ⚠️ 0 project is not fuzzed Security-Policy 🟢 9 security policy file detected SAST 🟢 9 SAST tool is not run on all commits -- score normalized to 9 Vulnerabilities ⚠️ 2 8 existing vulnerabilities detected
actions/peter-evans/create-or-update-comment	3.*.*	🟢 5.2	Details Check Score Reason Code-Review ⚠️ -1 Found no human activity in the last 30 changesets Maintained 🟢 10 14 commit(s) and 1 issue activity found in the last 90 days -- score normalized to 10 CII-Best-Practices ⚠️ 0 no effort to earn an OpenSSF best practices badge detected License 🟢 10 license file detected Signed-Releases ⚠️ -1 no releases found Dangerous-Workflow 🟢 10 no dangerous workflow patterns detected Packaging ⚠️ -1 packaging workflow not detected Binary-Artifacts 🟢 10 no binaries found in the repo Branch-Protection ⚠️ -1 internal error: error during branchesHandler.setup: internal error: githubv4.Query: Resource not accessible by integration Pinned-Dependencies ⚠️ 0 dependency not pinned by hash detected -- score normalized to 0 Token-Permissions ⚠️ 0 detected GitHub workflow tokens with excessive permissions Fuzzing ⚠️ 0 project is not fuzzed Security-Policy ⚠️ 0 security policy file not detected SAST ⚠️ 0 SAST tool is not run on all commits -- score normalized to 0 Vulnerabilities 🟢 8 2 existing vulnerabilities detected

Scanned Manifest Files

.github/workflows/generate-bundle-url.yml

• actions/checkout@3.*.*
• actions/setup-node@3.*.*
• peter-evans/create-or-update-comment@3.*.*

package-lock.json

• [email protected]
• @szmarczak/[email protected]
• @types/[email protected]
• @types/[email protected]
• @types/[email protected]
• @types/[email protected]
• @types/[email protected]
• [email protected]
• [email protected]
• [email protected]
• [email protected]
• [email protected]
• [email protected]
• [email protected]
• [email protected]
• [email protected]
• [email protected]
• [email protected]
• [email protected]
• [email protected]
• [email protected]
• [email protected]
• [email protected]
• [email protected]
• [email protected]
• [email protected]
• [email protected]
• [email protected]
• [email protected]
• [email protected]
• [email protected]
• [email protected]
• [email protected]
• [email protected]
• [email protected]
• [email protected]
• [email protected]
• [email protected]

package.json

• husky@^9.1.6
• ngrok@

[github-actions]

Test Bundle URL:

Preview script bundle

${GITHUB_EVENT_PULL_REQUEST_BODY}

[github-actions]

Test Bundle URL:

Preview script bundle

${GITHUB_EVENT_PULL_REQUEST_BODY}

[github-actions]

Test Bundle URL:

[Preview script bundle](${ { steps.generate-url.outputs.url }})

${ { github.event.pull_request.body }}

[github-actions]

Test Bundle URL:

[Preview script bundle](${ { env.URL }})

${ { github.event.pull_request.body }}

[github-actions]

Test Bundle URL:

[Preview script bundle](Generated URL: https://cdn.jsdelivr.net/gh/deriv-com/webflow-deriv-com-scripts@81971cda094fe1efa240a9ef5e831bf679402c0e/src/bundle-script.min.js)

[github-actions]

Test Bundle URL:

Generated URL: https://cdn.jsdelivr.net/gh/deriv-com/webflow-deriv-com-scripts@4b4c4bca0335a0626e237e04d033a9bb589ab459/src/bundle-script.min.js

[github-actions]

CUSTOM FOOTER SCRIPT

Generated URL: https://cdn.jsdelivr.net/gh/deriv-com/webflow-deriv-com-scripts@188c50816cea09cf8f83d30d4bc78619c1a8875a/src/bundle-script.min.js

[github-actions]

CUSTOM FOOTER SCRIPT

Generated URL: https://cdn.jsdelivr.net/gh/deriv-com/webflow-deriv-com-scripts@504a8f61ac925e8e4d2896c590d33cfa231e8e20/src/bundle-script.min.js

[github-actions]

CUSTOM FOOTER SCRIPT

Generated URL: https://cdn.jsdelivr.net/gh/deriv-com/webflow-deriv-com-scripts@98218b17a2dd673035f2e848b901f431156c6829/src/bundle-script.min.js

[github-actions]

CUSTOM FOOTER SCRIPT

Generated URL: https://cdn.jsdelivr.net/gh/deriv-com/webflow-deriv-com-scripts@32ebaaba0e51300a7235aa5623b9be3b2c257020/src/bundle-script.min.js