Dependency Review

Bump secp256k1 from 4.0.3 to 4.0.4 in the npm_and_yarn group #1678

Sign in to view logs

Triggered via pull request October 21, 2024 18:18

dependabot[bot]

opened #757

dependabot/npm_and_yarn/npm_and_yarn-38c118d439

Status Failure

Total duration 14s

Artifacts –

dependency-review.yml

on: pull_request

dependency-review

Annotations

1 error and 1 warning

dependency-review

Dependency review detected vulnerable packages.

OpenSSF Scorecard Warning

npm/elliptic has an OpenSSF Scorecard of 1.8, which is less than this repository's threshold of 3.