Bump eslint from 8.57.0 to 9.13.0

[dependabot]

Bumps eslint from 8.57.0 to 9.13.0.

Release notes

Sourced from eslint's releases.

v9.13.0

Features

• 381c32b feat: Allow languages to provide defaultLanguageOptions (#19003) (Milos Djermanovic)
• bf723bd feat: Improve eslintrc warning message (#19023) (Milos Djermanovic)
• 1def4cd feat: drop support for jiti v1.21 (#18996) (Francesco Trotta)
• f879be2 feat: export ESLint.defaultConfig (#18983) (Nitin Kumar)

Bug Fixes

• 78836d4 fix: update the complexity rule type (#19027) (Nitin Kumar)
• 064c8b6 fix: update rule types (#18925) (Nitin Kumar)

Documentation

• abdbfa8 docs: mark LintMessage#nodeType as deprecated (#19019) (Nitin Kumar)
• 19e68d3 docs: update deprecated rules type definitions (#19018) (Nitin Kumar)
• 7dd402d docs: Update examples of passing multiple values to a CLI option (#19006) (Milos Djermanovic)
• 5dcbc51 docs: Add example with side-effect imports to no-restricted-imports (#18997) (Milos Djermanovic)
• 1ee87ca docs: Update README (GitHub Actions Bot)
• 2c3dbdc docs: Use prerendered sponsors for README (#18988) (Milos Djermanovic)

Chores

• 68d2d9d chore: upgrade to @eslint/js@9.13.0 and @eslint/core@^0.7.0 (#19034) (Francesco Trotta)
• 2211f0a chore: package.json update for @​eslint/js release (Jenkins)
• c7abaef perf: using Node.js compile cache (#19012) (唯然)
• 1d7c077 chore: add pkg.type "commonjs" (#19011) (唯然)
• 468e3bd test: fix ESLint tests (#19021) (Francesco Trotta)
• ed4635f ci: upgrade knip@5.32.0 (#18992) (Milos Djermanovic)
• efad767 chore: remove unused ignore dependency (#18993) (Amaresh S M)

v9.12.0

Features

• 5a6a053 feat: update to jiti v2 (#18954) (Arya Emami)
• 17a07fb feat: Hooks for test cases (RuleTester) (#18771) (Anna Bocharova)
• 2ff0e51 feat: Implement alternate config lookup (#18742) (Nicholas C. Zakas)
• 2d17453 feat: Implement modified cyclomatic complexity (#18896) (Dmitry Pashkevich)

Bug Fixes

• ea380ca fix: Upgrade retry to avoid EMFILE errors (#18986) (Nicholas C. Zakas)
• fdd6319 fix: Issues with type definitions (#18940) (Arya Emami)

Documentation

• ecbd522 docs: Mention code explorer (#18978) (Nicholas C. Zakas)
• 7ea4ecc docs: Clarifying the Use of Meta Objects (#18697) (Amaresh S M)
• d3e4b2e docs: Clarify how to exclude .js files (#18976) (Milos Djermanovic)
• 57232ff docs: Mention plugin-kit in language docs (#18973) (Nicholas C. Zakas)
• b80ed00 docs: Update README (GitHub Actions Bot)
• cb69ab3 docs: Update README (GitHub Actions Bot)
• 7fb0d95 docs: Update README (GitHub Actions Bot)
• 493348a docs: Update README (GitHub Actions Bot)
• 87a582c docs: fix typo in id-match rule (#18944) (Jay)

... (truncated)

Changelog

Sourced from eslint's changelog.

v9.13.0 - October 18, 2024

• 68d2d9d chore: upgrade to @eslint/js@9.13.0 and @eslint/core@^0.7.0 (#19034) (Francesco Trotta)
• 2211f0a chore: package.json update for @​eslint/js release (Jenkins)
• 381c32b feat: Allow languages to provide defaultLanguageOptions (#19003) (Milos Djermanovic)
• 78836d4 fix: update the complexity rule type (#19027) (Nitin Kumar)
• c7abaef perf: using Node.js compile cache (#19012) (唯然)
• bf723bd feat: Improve eslintrc warning message (#19023) (Milos Djermanovic)
• 1d7c077 chore: add pkg.type "commonjs" (#19011) (唯然)
• abdbfa8 docs: mark LintMessage#nodeType as deprecated (#19019) (Nitin Kumar)
• 468e3bd test: fix ESLint tests (#19021) (Francesco Trotta)
• 19e68d3 docs: update deprecated rules type definitions (#19018) (Nitin Kumar)
• 1def4cd feat: drop support for jiti v1.21 (#18996) (Francesco Trotta)
• 7dd402d docs: Update examples of passing multiple values to a CLI option (#19006) (Milos Djermanovic)
• 064c8b6 fix: update rule types (#18925) (Nitin Kumar)
• f879be2 feat: export ESLint.defaultConfig (#18983) (Nitin Kumar)
• 5dcbc51 docs: Add example with side-effect imports to no-restricted-imports (#18997) (Milos Djermanovic)
• ed4635f ci: upgrade knip@5.32.0 (#18992) (Milos Djermanovic)
• efad767 chore: remove unused ignore dependency (#18993) (Amaresh S M)
• 1ee87ca docs: Update README (GitHub Actions Bot)
• 2c3dbdc docs: Use prerendered sponsors for README (#18988) (Milos Djermanovic)

v9.12.0 - October 4, 2024

• 555aafd chore: upgrade to @eslint/js@9.12.0 (#18987) (Francesco Trotta)
• 873ae60 chore: package.json update for @​eslint/js release (Jenkins)
• ea380ca fix: Upgrade retry to avoid EMFILE errors (#18986) (Nicholas C. Zakas)
• d0a5414 refactor: replace strip-ansi with native module (#18982) (Cristopher)
• b827029 chore: Enable JSON5 linting (#18979) (Milos Djermanovic)
• ecbd522 docs: Mention code explorer (#18978) (Nicholas C. Zakas)
• 7ea4ecc docs: Clarifying the Use of Meta Objects (#18697) (Amaresh S M)
• d3e4b2e docs: Clarify how to exclude .js files (#18976) (Milos Djermanovic)
• 5a6a053 feat: update to jiti v2 (#18954) (Arya Emami)
• 57232ff docs: Mention plugin-kit in language docs (#18973) (Nicholas C. Zakas)
• b80ed00 docs: Update README (GitHub Actions Bot)
• cb69ab3 docs: Update README (GitHub Actions Bot)
• 7fb0d95 docs: Update README (GitHub Actions Bot)
• fdd6319 fix: Issues with type definitions (#18940) (Arya Emami)
• 8f55ca2 chore: Upgrade espree, eslint-visitor-keys, eslint-scope (#18962) (Nicholas C. Zakas)
• 17a07fb feat: Hooks for test cases (RuleTester) (#18771) (Anna Bocharova)
• 493348a docs: Update README (GitHub Actions Bot)
• 87a582c docs: fix typo in id-match rule (#18944) (Jay)
• 2ff0e51 feat: Implement alternate config lookup (#18742) (Nicholas C. Zakas)
• 2d17453 feat: Implement modified cyclomatic complexity (#18896) (Dmitry Pashkevich)
• c1a2725 chore: update dependency mocha to ^10.7.3 (#18945) (Milos Djermanovic)

v9.11.1 - September 23, 2024

• df4a859 chore: upgrade @​eslint/js@​9.11.1 (#18943) (Milos Djermanovic)
• 36d8095 chore: package.json update for @​eslint/js release (Jenkins)

... (truncated)

Commits

• 1a7cdbf 9.13.0
• 627d5bf Build: changelog update for 9.13.0
• 68d2d9d chore: upgrade to @eslint/js@9.13.0 and @eslint/core@^0.7.0 (#19034)
• 2211f0a chore: package.json update for @​eslint/js release
• 381c32b feat: Allow languages to provide defaultLanguageOptions (#19003)
• 78836d4 fix: update the complexity rule type (#19027)
• c7abaef perf: using Node.js compile cache (#19012)
• bf723bd feat: Improve eslintrc warning message (#19023)
• 1d7c077 chore: add pkg.type "commonjs" (#19011)
• abdbfa8 docs: mark LintMessage#nodeType as deprecated (#19019)
• Additional commits viewable in compare view

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

---

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

• @dependabot rebase will rebase this PR
• @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
• @dependabot merge will merge this PR after your CI passes on it
• @dependabot squash and merge will squash and merge this PR after your CI passes on it
• @dependabot cancel merge will cancel a previously requested merge and block automerging
• @dependabot reopen will reopen this PR if it is closed
• @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
• @dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
• @dependabot ignore this major version will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
• @dependabot ignore this minor version will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
• @dependabot ignore this dependency will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)

[vercel]

The latest updates on your projects. Learn more about Vercel for Git ↗︎

Name	Status	Preview	Updated (UTC)
team334-github-io	❌ Failed (Inspect)		Oct 21, 2024 3:46am
team334-github-io-pk4p	❌ Failed (Inspect)		Oct 21, 2024 3:46am

[github-actions]

Dependency Review

✅ No vulnerabilities or license issues or OpenSSF Scorecard issues found.

OpenSSF Scorecard

Scorecard details

Package	Version	Score	Details
npm/@eslint/config-array	0.18.0	Unknown	Unknown
npm/@eslint/core	0.7.0	Unknown	Unknown
npm/@eslint/eslintrc	3.1.0	🟢 5.8	Details Check Score Reason Code-Review 🟢 9 Found 19/21 approved changesets -- score normalized to 9 Maintained ⚠️ 1 0 commit(s) and 2 issue activity found in the last 90 days -- score normalized to 1 CII-Best-Practices ⚠️ 0 no effort to earn an OpenSSF best practices badge detected License 🟢 10 license file detected Signed-Releases ⚠️ -1 no releases found Dangerous-Workflow 🟢 10 no dangerous workflow patterns detected Token-Permissions ⚠️ 0 detected GitHub workflow tokens with excessive permissions Binary-Artifacts 🟢 10 no binaries found in the repo Pinned-Dependencies ⚠️ 0 dependency not pinned by hash detected -- score normalized to 0 Branch-Protection ⚠️ -1 internal error: error during branchesHandler.setup: internal error: githubv4.Query: Resource not accessible by integration Vulnerabilities 🟢 10 0 existing vulnerabilities detected Fuzzing ⚠️ 0 project is not fuzzed Security-Policy 🟢 10 security policy file detected Packaging 🟢 10 packaging workflow detected SAST ⚠️ 0 SAST tool is not run on all commits -- score normalized to 0
npm/@eslint/js	9.13.0	🟢 6.9	Details Check Score Reason Code-Review 🟢 7 Found 21/30 approved changesets -- score normalized to 7 Maintained 🟢 10 30 commit(s) and 16 issue activity found in the last 90 days -- score normalized to 10 CII-Best-Practices ⚠️ 0 no effort to earn an OpenSSF best practices badge detected License 🟢 10 license file detected Signed-Releases ⚠️ -1 no releases found Branch-Protection ⚠️ -1 internal error: error during branchesHandler.setup: internal error: githubv4.Query: Resource not accessible by integration Dangerous-Workflow 🟢 10 no dangerous workflow patterns detected Packaging ⚠️ -1 packaging workflow not detected Token-Permissions ⚠️ 0 detected GitHub workflow tokens with excessive permissions Vulnerabilities 🟢 10 0 existing vulnerabilities detected Binary-Artifacts 🟢 10 no binaries found in the repo Pinned-Dependencies ⚠️ 0 dependency not pinned by hash detected -- score normalized to 0 Security-Policy 🟢 10 security policy file detected Fuzzing ⚠️ 0 project is not fuzzed SAST 🟢 10 SAST tool is run on all commits
npm/@eslint/object-schema	2.1.4	Unknown	Unknown
npm/@eslint/plugin-kit	0.2.1	Unknown	Unknown
npm/@humanfs/core	0.19.0	Unknown	Unknown
npm/@humanfs/node	0.16.5	Unknown	Unknown
npm/@humanwhocodes/retry	0.3.1	Unknown	Unknown
npm/@nolyfill/is-core-module	1.0.39	Unknown	Unknown
npm/@rtsao/scc	1.1.0	🟢 3.3	Details Check Score Reason Code-Review ⚠️ 2 Found 1/4 approved changesets -- score normalized to 2 Maintained ⚠️ 0 0 commit(s) and 0 issue activity found in the last 90 days -- score normalized to 0 CII-Best-Practices ⚠️ 0 no effort to earn an OpenSSF best practices badge detected License 🟢 10 license file detected Signed-Releases ⚠️ -1 no releases found Dangerous-Workflow ⚠️ -1 no workflows found Packaging ⚠️ -1 packaging workflow not detected Token-Permissions ⚠️ -1 No tokens found Pinned-Dependencies ⚠️ -1 no dependencies found Binary-Artifacts 🟢 10 no binaries found in the repo Branch-Protection ⚠️ 0 branch protection not enabled on development/release branches SAST ⚠️ 0 SAST tool is not run on all commits -- score normalized to 0 Security-Policy ⚠️ 0 security policy file not detected Fuzzing ⚠️ 0 project is not fuzzed Vulnerabilities 🟢 10 0 existing vulnerabilities detected
npm/@types/estree	1.0.6	🟢 6.9	Details Check Score Reason Code-Review 🟢 8 Found 26/29 approved changesets -- score normalized to 8 Maintained 🟢 10 30 commit(s) and 2 issue activity found in the last 90 days -- score normalized to 10 CII-Best-Practices ⚠️ 0 no effort to earn an OpenSSF best practices badge detected License 🟢 9 license file detected Signed-Releases ⚠️ -1 no releases found Branch-Protection ⚠️ -1 internal error: error during branchesHandler.setup: internal error: githubv4.Query: Resource not accessible by integration Packaging ⚠️ -1 packaging workflow not detected Dangerous-Workflow 🟢 10 no dangerous workflow patterns detected Security-Policy 🟢 10 security policy file detected Token-Permissions ⚠️ 0 detected GitHub workflow tokens with excessive permissions Vulnerabilities 🟢 10 0 existing vulnerabilities detected SAST ⚠️ 0 SAST tool is not run on all commits -- score normalized to 0 Binary-Artifacts 🟢 10 no binaries found in the repo Pinned-Dependencies 🟢 8 dependency not pinned by hash detected -- score normalized to 8 Fuzzing ⚠️ 0 project is not fuzzed
npm/@types/json-schema	7.0.15	🟢 6.9	Details Check Score Reason Code-Review 🟢 8 Found 26/29 approved changesets -- score normalized to 8 Maintained 🟢 10 30 commit(s) and 2 issue activity found in the last 90 days -- score normalized to 10 CII-Best-Practices ⚠️ 0 no effort to earn an OpenSSF best practices badge detected License 🟢 9 license file detected Signed-Releases ⚠️ -1 no releases found Branch-Protection ⚠️ -1 internal error: error during branchesHandler.setup: internal error: githubv4.Query: Resource not accessible by integration Packaging ⚠️ -1 packaging workflow not detected Dangerous-Workflow 🟢 10 no dangerous workflow patterns detected Security-Policy 🟢 10 security policy file detected Token-Permissions ⚠️ 0 detected GitHub workflow tokens with excessive permissions Vulnerabilities 🟢 10 0 existing vulnerabilities detected SAST ⚠️ 0 SAST tool is not run on all commits -- score normalized to 0 Binary-Artifacts 🟢 10 no binaries found in the repo Pinned-Dependencies 🟢 8 dependency not pinned by hash detected -- score normalized to 8 Fuzzing ⚠️ 0 project is not fuzzed
npm/acorn	8.13.0	🟢 5.3	Details Check Score Reason Code-Review 🟢 3 Found 8/26 approved changesets -- score normalized to 3 Maintained 🟢 10 6 commit(s) and 7 issue activity found in the last 90 days -- score normalized to 10 CII-Best-Practices ⚠️ 0 no effort to earn an OpenSSF best practices badge detected Signed-Releases ⚠️ -1 no releases found Token-Permissions 🟢 10 GitHub workflow tokens follow principle of least privilege Packaging ⚠️ -1 packaging workflow not detected Dangerous-Workflow 🟢 10 no dangerous workflow patterns detected License ⚠️ 0 license file not detected Binary-Artifacts 🟢 10 no binaries found in the repo Branch-Protection ⚠️ 0 branch protection not enabled on development/release branches Vulnerabilities 🟢 10 0 existing vulnerabilities detected Security-Policy ⚠️ 0 security policy file not detected Pinned-Dependencies ⚠️ 0 dependency not pinned by hash detected -- score normalized to 0 Fuzzing ⚠️ 0 project is not fuzzed SAST ⚠️ 0 SAST tool is not run on all commits -- score normalized to 0
npm/axe-core	4.10.1	🟢 6	Details Check Score Reason Code-Review 🟢 10 all changesets reviewed Maintained 🟢 10 26 commit(s) and 1 issue activity found in the last 90 days -- score normalized to 10 CII-Best-Practices ⚠️ 0 no effort to earn an OpenSSF best practices badge detected License 🟢 10 license file detected Signed-Releases ⚠️ -1 no releases found Branch-Protection ⚠️ -1 internal error: error during branchesHandler.setup: internal error: githubv4.Query: Resource not accessible by integration Packaging ⚠️ -1 packaging workflow not detected Dangerous-Workflow 🟢 10 no dangerous workflow patterns detected Security-Policy 🟢 10 security policy file detected Token-Permissions ⚠️ 0 detected GitHub workflow tokens with excessive permissions Binary-Artifacts 🟢 10 no binaries found in the repo Pinned-Dependencies 🟢 5 dependency not pinned by hash detected -- score normalized to 5 Fuzzing ⚠️ 0 project is not fuzzed SAST ⚠️ 0 SAST tool is not run on all commits -- score normalized to 0 Vulnerabilities ⚠️ 1 9 existing vulnerabilities detected
npm/axobject-query	4.1.0	🟢 5.6	Details Check Score Reason Code-Review ⚠️ 1 Found 3/16 approved changesets -- score normalized to 1 Maintained 🟢 5 5 commit(s) and 1 issue activity found in the last 90 days -- score normalized to 5 CII-Best-Practices ⚠️ 0 no effort to earn an OpenSSF best practices badge detected License 🟢 10 license file detected Signed-Releases ⚠️ -1 no releases found Security-Policy 🟢 9 security policy file detected Packaging ⚠️ -1 packaging workflow not detected Dangerous-Workflow 🟢 10 no dangerous workflow patterns detected Token-Permissions ⚠️ 0 detected GitHub workflow tokens with excessive permissions Binary-Artifacts 🟢 10 no binaries found in the repo Branch-Protection ⚠️ -1 internal error: error during branchesHandler.setup: internal error: githubv4.Query: Resource not accessible by integration Pinned-Dependencies 🟢 8 dependency not pinned by hash detected -- score normalized to 8 Vulnerabilities 🟢 10 0 existing vulnerabilities detected Fuzzing ⚠️ 0 project is not fuzzed SAST ⚠️ 0 SAST tool is not run on all commits -- score normalized to 0
npm/eslint	9.13.0	🟢 6.9	Details Check Score Reason Code-Review 🟢 7 Found 21/30 approved changesets -- score normalized to 7 Maintained 🟢 10 30 commit(s) and 16 issue activity found in the last 90 days -- score normalized to 10 CII-Best-Practices ⚠️ 0 no effort to earn an OpenSSF best practices badge detected License 🟢 10 license file detected Signed-Releases ⚠️ -1 no releases found Branch-Protection ⚠️ -1 internal error: error during branchesHandler.setup: internal error: githubv4.Query: Resource not accessible by integration Dangerous-Workflow 🟢 10 no dangerous workflow patterns detected Packaging ⚠️ -1 packaging workflow not detected Token-Permissions ⚠️ 0 detected GitHub workflow tokens with excessive permissions Vulnerabilities 🟢 10 0 existing vulnerabilities detected Binary-Artifacts 🟢 10 no binaries found in the repo Pinned-Dependencies ⚠️ 0 dependency not pinned by hash detected -- score normalized to 0 Security-Policy 🟢 10 security policy file detected Fuzzing ⚠️ 0 project is not fuzzed SAST 🟢 10 SAST tool is run on all commits
npm/eslint-import-resolver-typescript	3.6.3	🟢 5.2	Details Check Score Reason Code-Review ⚠️ 1 Found 4/28 approved changesets -- score normalized to 1 Maintained 🟢 10 10 commit(s) and 3 issue activity found in the last 90 days -- score normalized to 10 CII-Best-Practices ⚠️ 0 no effort to earn an OpenSSF best practices badge detected License 🟢 10 license file detected Signed-Releases ⚠️ -1 no releases found Packaging ⚠️ -1 packaging workflow not detected Binary-Artifacts 🟢 10 no binaries found in the repo Dangerous-Workflow 🟢 10 no dangerous workflow patterns detected Token-Permissions ⚠️ 0 detected GitHub workflow tokens with excessive permissions Pinned-Dependencies ⚠️ 0 dependency not pinned by hash detected -- score normalized to 0 Branch-Protection ⚠️ -1 internal error: error during branchesHandler.setup: internal error: githubv4.Query: Resource not accessible by integration Fuzzing ⚠️ 0 project is not fuzzed Security-Policy 🟢 9 security policy file detected SAST 🟢 9 SAST tool detected but not run on all commits Vulnerabilities ⚠️ 1 9 existing vulnerabilities detected
npm/eslint-module-utils	2.12.0	🟢 6	Details Check Score Reason Maintained 🟢 10 26 commit(s) and 21 issue activity found in the last 90 days -- score normalized to 10 Code-Review 🟢 5 Found 14/24 approved changesets -- score normalized to 5 CII-Best-Practices ⚠️ 0 no effort to earn an OpenSSF best practices badge detected License 🟢 10 license file detected Signed-Releases ⚠️ -1 no releases found Branch-Protection ⚠️ -1 internal error: error during branchesHandler.setup: internal error: githubv4.Query: Resource not accessible by integration Security-Policy 🟢 10 security policy file detected Dangerous-Workflow 🟢 10 no dangerous workflow patterns detected Token-Permissions ⚠️ 0 detected GitHub workflow tokens with excessive permissions Packaging ⚠️ -1 packaging workflow not detected Binary-Artifacts 🟢 10 no binaries found in the repo Pinned-Dependencies ⚠️ 0 dependency not pinned by hash detected -- score normalized to 0 Vulnerabilities 🟢 10 0 existing vulnerabilities detected Fuzzing ⚠️ 0 project is not fuzzed SAST ⚠️ 0 SAST tool is not run on all commits -- score normalized to 0
npm/eslint-plugin-import	2.31.0	🟢 6	Details Check Score Reason Maintained 🟢 10 26 commit(s) and 21 issue activity found in the last 90 days -- score normalized to 10 Code-Review 🟢 5 Found 14/24 approved changesets -- score normalized to 5 CII-Best-Practices ⚠️ 0 no effort to earn an OpenSSF best practices badge detected License 🟢 10 license file detected Signed-Releases ⚠️ -1 no releases found Branch-Protection ⚠️ -1 internal error: error during branchesHandler.setup: internal error: githubv4.Query: Resource not accessible by integration Security-Policy 🟢 10 security policy file detected Dangerous-Workflow 🟢 10 no dangerous workflow patterns detected Token-Permissions ⚠️ 0 detected GitHub workflow tokens with excessive permissions Packaging ⚠️ -1 packaging workflow not detected Binary-Artifacts 🟢 10 no binaries found in the repo Pinned-Dependencies ⚠️ 0 dependency not pinned by hash detected -- score normalized to 0 Vulnerabilities 🟢 10 0 existing vulnerabilities detected Fuzzing ⚠️ 0 project is not fuzzed SAST ⚠️ 0 SAST tool is not run on all commits -- score normalized to 0
npm/eslint-plugin-jsx-a11y	6.10.0	🟢 5.8	Details Check Score Reason Code-Review 🟢 3 Found 10/29 approved changesets -- score normalized to 3 Maintained 🟢 10 13 commit(s) and 11 issue activity found in the last 90 days -- score normalized to 10 CII-Best-Practices ⚠️ 0 no effort to earn an OpenSSF best practices badge detected License 🟢 10 license file detected Signed-Releases ⚠️ -1 no releases found Branch-Protection ⚠️ -1 internal error: error during branchesHandler.setup: internal error: githubv4.Query: Resource not accessible by integration Dangerous-Workflow 🟢 10 no dangerous workflow patterns detected Packaging ⚠️ -1 packaging workflow not detected Token-Permissions ⚠️ 0 detected GitHub workflow tokens with excessive permissions Binary-Artifacts 🟢 10 no binaries found in the repo Pinned-Dependencies ⚠️ 0 dependency not pinned by hash detected -- score normalized to 0 Vulnerabilities 🟢 10 0 existing vulnerabilities detected Fuzzing ⚠️ 0 project is not fuzzed Security-Policy 🟢 9 security policy file detected SAST ⚠️ 0 SAST tool is not run on all commits -- score normalized to 0
npm/eslint-plugin-react-hooks	5.0.0-canary-7118f5dd7-20230705	🟢 5.2	Details Check Score Reason Code-Review 🟢 7 Found 21/28 approved changesets -- score normalized to 7 Maintained 🟢 10 30 commit(s) and 5 issue activity found in the last 90 days -- score normalized to 10 License 🟢 10 license file detected CII-Best-Practices ⚠️ 2 badge detected: InProgress Branch-Protection ⚠️ -1 internal error: error during branchesHandler.setup: internal error: githubv4.Query: Resource not accessible by integration Signed-Releases ⚠️ -1 no releases found Security-Policy 🟢 10 security policy file detected Packaging ⚠️ -1 packaging workflow not detected Dangerous-Workflow 🟢 10 no dangerous workflow patterns detected Token-Permissions ⚠️ 0 detected GitHub workflow tokens with excessive permissions SAST ⚠️ 0 SAST tool is not run on all commits -- score normalized to 0 Binary-Artifacts 🟢 9 binaries present in source code Pinned-Dependencies ⚠️ 0 dependency not pinned by hash detected -- score normalized to 0 Fuzzing ⚠️ 0 project is not fuzzed Vulnerabilities ⚠️ 0 193 existing vulnerabilities detected
npm/eslint-scope	8.1.0	Unknown	Unknown
npm/eslint-visitor-keys	4.1.0	Unknown	Unknown
npm/espree	10.2.0	Unknown	Unknown
npm/file-entry-cache	8.0.0	🟢 4.2	Details Check Score Reason Code-Review ⚠️ 0 Found 0/14 approved changesets -- score normalized to 0 Maintained 🟢 8 10 commit(s) and 0 issue activity found in the last 90 days -- score normalized to 8 CII-Best-Practices ⚠️ 0 no effort to earn an OpenSSF best practices badge detected License 🟢 10 license file detected Signed-Releases ⚠️ -1 no releases found Dangerous-Workflow 🟢 10 no dangerous workflow patterns detected Packaging ⚠️ -1 packaging workflow not detected Binary-Artifacts 🟢 10 no binaries found in the repo Pinned-Dependencies ⚠️ 0 dependency not pinned by hash detected -- score normalized to 0 Token-Permissions ⚠️ 0 detected GitHub workflow tokens with excessive permissions Security-Policy ⚠️ 0 security policy file not detected Vulnerabilities 🟢 10 0 existing vulnerabilities detected Fuzzing ⚠️ 0 project is not fuzzed Branch-Protection ⚠️ 0 branch protection not enabled on development/release branches SAST ⚠️ 0 SAST tool is not run on all commits -- score normalized to 0
npm/flat-cache	4.0.1	🟢 4	Details Check Score Reason Code-Review ⚠️ 1 Found 2/14 approved changesets -- score normalized to 1 Maintained ⚠️ 0 0 commit(s) and 0 issue activity found in the last 90 days -- score normalized to 0 CII-Best-Practices ⚠️ 0 no effort to earn an OpenSSF best practices badge detected License 🟢 10 license file detected Signed-Releases ⚠️ -1 no releases found Dangerous-Workflow 🟢 10 no dangerous workflow patterns detected Packaging ⚠️ -1 packaging workflow not detected Binary-Artifacts 🟢 10 no binaries found in the repo Pinned-Dependencies ⚠️ 0 dependency not pinned by hash detected -- score normalized to 0 Token-Permissions ⚠️ 0 detected GitHub workflow tokens with excessive permissions Branch-Protection ⚠️ 0 branch protection not enabled on development/release branches Security-Policy ⚠️ 0 security policy file not detected Fuzzing ⚠️ 0 project is not fuzzed Vulnerabilities 🟢 10 0 existing vulnerabilities detected SAST 🟢 8 SAST tool is not run on all commits -- score normalized to 8
npm/get-tsconfig	4.8.1	Unknown	Unknown
npm/globals	14.0.0	🟢 5.4	Details Check Score Reason Code-Review 🟢 4 Found 10/23 approved changesets -- score normalized to 4 Maintained 🟢 10 9 commit(s) and 5 issue activity found in the last 90 days -- score normalized to 10 CII-Best-Practices ⚠️ 0 no effort to earn an OpenSSF best practices badge detected License 🟢 10 license file detected Signed-Releases ⚠️ -1 no releases found Security-Policy 🟢 10 security policy file detected Packaging ⚠️ -1 packaging workflow not detected Dangerous-Workflow 🟢 10 no dangerous workflow patterns detected Binary-Artifacts 🟢 10 no binaries found in the repo Token-Permissions ⚠️ 0 detected GitHub workflow tokens with excessive permissions Pinned-Dependencies ⚠️ 0 dependency not pinned by hash detected -- score normalized to 0 Branch-Protection ⚠️ 0 branch protection not enabled on development/release branches Fuzzing ⚠️ 0 project is not fuzzed Vulnerabilities 🟢 10 0 existing vulnerabilities detected SAST ⚠️ 0 SAST tool is not run on all commits -- score normalized to 0
npm/is-bun-module	1.2.1	Unknown	Unknown
npm/is-core-module	2.15.1	🟢 4.9	Details Check Score Reason Code-Review ⚠️ 0 Found 0/30 approved changesets -- score normalized to 0 Maintained 🟢 5 6 commit(s) and 0 issue activity found in the last 90 days -- score normalized to 5 CII-Best-Practices ⚠️ 0 no effort to earn an OpenSSF best practices badge detected License 🟢 10 license file detected Packaging ⚠️ -1 packaging workflow not detected Binary-Artifacts 🟢 10 no binaries found in the repo Dangerous-Workflow 🟢 10 no dangerous workflow patterns detected Pinned-Dependencies ⚠️ 0 dependency not pinned by hash detected -- score normalized to 0 SAST ⚠️ 0 no SAST tool detected Token-Permissions ⚠️ 0 detected GitHub workflow tokens with excessive permissions Signed-Releases ⚠️ -1 no releases found Branch-Protection ⚠️ -1 internal error: error during branchesHandler.setup: internal error: githubv4.Query: Resource not accessible by integration Fuzzing ⚠️ 0 project is not fuzzed Vulnerabilities 🟢 10 0 existing vulnerabilities detected Security-Policy 🟢 9 security policy file detected
npm/string.prototype.includes	2.0.1	🟢 4.4	Details Check Score Reason Code-Review ⚠️ 1 Found 2/15 approved changesets -- score normalized to 1 Maintained 🟢 9 11 commit(s) and 0 issue activity found in the last 90 days -- score normalized to 9 CII-Best-Practices ⚠️ 0 no effort to earn an OpenSSF best practices badge detected License 🟢 10 license file detected Signed-Releases ⚠️ -1 no releases found Binary-Artifacts 🟢 10 no binaries found in the repo Dangerous-Workflow 🟢 10 no dangerous workflow patterns detected Packaging ⚠️ -1 packaging workflow not detected Pinned-Dependencies ⚠️ 0 dependency not pinned by hash detected -- score normalized to 0 Token-Permissions ⚠️ 0 detected GitHub workflow tokens with excessive permissions Security-Policy ⚠️ 0 security policy file not detected Vulnerabilities 🟢 10 0 existing vulnerabilities detected Fuzzing ⚠️ 0 project is not fuzzed Branch-Protection ⚠️ 0 branch protection not enabled on development/release branches SAST ⚠️ 0 SAST tool is not run on all commits -- score normalized to 0
npm/eslint	^9	🟢 6.9	Details Check Score Reason Code-Review 🟢 7 Found 21/30 approved changesets -- score normalized to 7 Maintained 🟢 10 30 commit(s) and 16 issue activity found in the last 90 days -- score normalized to 10 CII-Best-Practices ⚠️ 0 no effort to earn an OpenSSF best practices badge detected License 🟢 10 license file detected Signed-Releases ⚠️ -1 no releases found Branch-Protection ⚠️ -1 internal error: error during branchesHandler.setup: internal error: githubv4.Query: Resource not accessible by integration Dangerous-Workflow 🟢 10 no dangerous workflow patterns detected Packaging ⚠️ -1 packaging workflow not detected Token-Permissions ⚠️ 0 detected GitHub workflow tokens with excessive permissions Vulnerabilities 🟢 10 0 existing vulnerabilities detected Binary-Artifacts 🟢 10 no binaries found in the repo Pinned-Dependencies ⚠️ 0 dependency not pinned by hash detected -- score normalized to 0 Security-Policy 🟢 10 security policy file detected Fuzzing ⚠️ 0 project is not fuzzed SAST 🟢 10 SAST tool is run on all commits

Scanned Manifest Files

package-lock.json

• @eslint/config-array@0.18.0
• @eslint/core@0.7.0
• @eslint/eslintrc@3.1.0
• @eslint/js@9.13.0
• @eslint/object-schema@2.1.4
• @eslint/plugin-kit@0.2.1
• @humanfs/core@0.19.0
• @humanfs/node@0.16.5
• @humanwhocodes/retry@0.3.1
• @nolyfill/is-core-module@1.0.39
• @rtsao/scc@1.1.0
• @types/estree@1.0.6
• @types/json-schema@7.0.15
• acorn@8.13.0
• axe-core@4.10.1
• axobject-query@4.1.0
• eslint@9.13.0
• eslint-import-resolver-typescript@3.6.3
• eslint-module-utils@2.12.0
• eslint-plugin-import@2.31.0
• eslint-plugin-jsx-a11y@6.10.0
• eslint-plugin-react-hooks@5.0.0-canary-7118f5dd7-20230705
• eslint-scope@8.1.0
• eslint-visitor-keys@4.1.0
• espree@10.2.0
• file-entry-cache@8.0.0
• flat-cache@4.0.1
• get-tsconfig@4.8.1
• globals@14.0.0
• is-bun-module@1.2.1
• is-core-module@2.15.1
• string.prototype.includes@2.0.1
• @eslint/eslintrc@2.1.4
• @eslint/js@8.57.0
• @humanwhocodes/config-array@0.11.14
• @humanwhocodes/object-schema@2.0.3
• @types/estree@1.0.5
• acorn@8.12.1
• axe-core@4.9.1
• axobject-query@3.1.1
• doctrine@3.0.0
• eslint@8.57.0
• eslint-import-resolver-typescript@3.6.1
• eslint-module-utils@2.8.1
• eslint-plugin-import@2.29.1
• eslint-plugin-jsx-a11y@6.9.0
• eslint-plugin-react-hooks@4.6.2
• eslint-scope@7.2.2
• espree@9.6.1
• file-entry-cache@6.0.1
• flat-cache@3.2.0
• fs.realpath@1.0.0
• get-tsconfig@4.7.6
• glob@7.2.3
• globals@13.24.0
• graphemer@1.4.0
• inflight@1.0.6
• inherits@2.0.4
• is-core-module@2.15.0
• is-path-inside@3.0.3
• once@1.4.0
• path-is-absolute@1.0.1
• rimraf@3.0.2
• string.prototype.includes@2.0.0
• type-fest@0.20.2
• wrappy@1.0.2

package.json

• eslint@^9
• eslint@^8

[dependabot]

Superseded by #84.