build(deps): bump the npm_and_yarn group across 1 directory with 13 updates

[dependabot]

Bumps the npm_and_yarn group with 8 updates in the / directory:

Package	From	To
lerna	8.1.9	8.2.2
postcss	8.5.1	8.5.3
stylelint	13.13.1	16.19.1
stylelint-selector-bem-pattern	2.1.1	4.0.1
storybook	8.5.3	8.6.14
@babel/helpers	7.26.7	7.27.1
@babel/runtime	7.26.7	7.27.1
axios	1.7.9	1.9.0

Updates lerna from 8.1.9 to 8.2.2

Release notes

Sourced from lerna's releases.

v8.2.2

8.2.2 (2025-04-10)

Bug Fixes

• use searchStrategy: global to fix breaking change behaviour after upgrading cosmiconfig to 9.0.0 (#4159) (6242511)
• version: disable legacy peer deps behavior by default (#4175) (0cd3241)

v8.2.1

8.2.1 (2025-03-03)

Note: Version bump only for package lerna-monorepo

v8.2.0

8.2.0 (2025-02-19)

Bug Fixes

• drop strip-ansi in favor of native stripVTControlCharacters (#4095) (9e4ac9c)

Features

• allow custom working dir for detectProjects (#4148) (08d1d0d)

Changelog

Sourced from lerna's changelog.

8.2.2 (2025-04-10)

Note: Version bump only for package lerna

8.2.1 (2025-03-03)

Note: Version bump only for package lerna

8.2.0 (2025-02-19)

Bug Fixes

• drop strip-ansi in favor of native stripVTControlCharacters (#4095) (9e4ac9c)

Features

• allow custom working dir for detectProjects (#4148) (08d1d0d)

Commits

• 6ea835d chore(misc): publish 8.2.2
• 95ab1cb chore(misc): publish 8.2.1
• 770220c chore(deps): bump @​octokit/rest from 19.0.11 to 20.1.2 (#4154)
• 58cdfec chore(misc): publish 8.2.0
• 08d1d0d feat: allow custom working dir for detectProjects (#4148)
• 0dd2cb9 chore: update to latest dependencies (#4151)
• 9e4ac9c fix: drop strip-ansi in favor of native stripVTControlCharacters (#4095)
• See full diff in compare view

Updates postcss from 8.5.1 to 8.5.3

Release notes

Sourced from postcss's releases.

8.5.3

• Added more details to Unknown word error (by @​hiepxanh).
• Fixed types (by @​romainmenke).
• Fixed docs (by @​catnipan).

8.5.2

• Fixed end position of rules with semicolon (by @​romainmenke).

Changelog

Sourced from postcss's changelog.

8.5.3

• Added more details to Unknown word error (by @​hiepxanh).
• Fixed types (by @​romainmenke).
• Fixed docs (by @​catnipan).

8.5.2

• Fixed end position of rules with semicolon (by @​romainmenke).

Commits

• 22c309d Release 8.5.3 version
• a2b594f Update ESLint config
• 8232ba0 Fix tests
• 5082831 Fix text
• 4fdb54b update: parser.js to clarify error message
• 06006ec AtRule can be empty
• 755f08f fix typo: them -> then (#2016)
• 692fcde Release 8.5.2 version
• b70e98f Update dependencies
• ba587e3 Fix end position of rules with ownSemicon (#2012)
• See full diff in compare view

Updates stylelint from 13.13.1 to 16.19.1

Release notes

Sourced from stylelint's releases.

16.19.1

• Fixed: no-empty-source false positives for non-standard syntaxes (#8548) (@​ybiquitous).

16.19.0

It adds 2 options to 2 rules and fixes 3 bugs.

• Added: exceptWithoutPropertyFallback: [] to function-allowed-list (#8488) (@​ryo-manba).
• Added: ignore: ["four-into-three-edge-values"] to shorthand-property-no-redundant-values (#8527) (@​ryo-manba).
• Fixed: compact formatter with pnpm to newline the exit code (#8534) (@​konomae).
• Fixed: declaration-property-value-no-unknown range and message for invalid syntax within known functions (#8528) (@​ryo-manba).
• Fixed: no-empty-source false positives for --report-needless-disables (#8536) (@​romainmenke).

16.18.0

It adds 2 new rules and fixes 2 bugs. We've turned on these rules, and the syntax-string-no-invalid and layer-name-pattern ones from recent releases, in our standard config.

• Added: color-function-alias-notation rule (#8499) (@​EduardAkhmetshin).
• Added: container-name-pattern rule (#8498) (@​nate10j).
• Fixed: declaration-property-value-no-unknown false positives for math of font-size (#8495) (@​otomad).
• Fixed: font-family-no-missing-generic-family-keyword false positives for math (#8489) (@​otomad).

16.17.0

It adds 1 new rule, support for languageOptions to 2 rules, 1 option to a rule, the --compute-edit-info CLI flag (along with support for EditInfo in 3 rules), and fixes 1 bug. EditInfo is useful for automated fixing tools and editor integrations.

• Added: layer-name-pattern rule (#8474) (@​ryo-manba).
• Added: --compute-edit-info CLI flag (#8473) (@​ryo-manba).
• Added: ignorePreludeOfAtRules: [] to length-zero-no-unit (#8472) (@​ryo-manba).
• Added: at-rule-no-unknown support for languageOptions (#8475) (@​ryo-manba).
• Added: property-no-unknown support for languageOptions (#8476) (@​ryo-manba).
• Added: declaration-block-no-redundant-longhand-properties support for computing EditInfo (#8482) (@​pamelalozano16).
• Added: function-url-quotes support for computing EditInfo (#8483) (@​pamelalozano16).
• Added: selector-attribute-quotes support for computing EditInfo (#8484) (@​pamelalozano16).
• Fixed: custom-property-pattern false negatives for @property preludes (#8468) (@​rohitgs28).

16.16.0

It adds support for computing EditInfo to 22 more rules and reverts a change that added context.lexer to our public API in the previous release.

• Added: at-rule-empty-line-before support for computing EditInfo (#8425) (@​pamelalozano16).
• Added: at-rule-no-deprecated support for computing EditInfo (#8426) (@​pamelalozano16).
• Added: at-rule-no-vendor-prefix support for computing EditInfo (#8427) (@​pamelalozano16).
• Added: color-function-notation support for computing EditInfo (#8437) (@​pamelalozano16).
• Added: declaration-empty-line-before support for computing EditInfo (#8443) (@​pamelalozano16).
• Added: declaration-property-value-keyword-no-deprecated support for computing EditInfo. (#8439) (@​pamelalozano16).
• Added: font-family-name-quotes support for computing EditInfo (#8419) (@​ryo-manba).
• Added: font-weight-notation support for computing EditInfo (#8420) (@​ryo-manba).
• Added: function-calc-no-unspaced-operator support for computing EditInfo (#8440) (@​pamelalozano16).
• Added: function-name-case support for support for computing EditInfo." (#8442) (@​pamelalozano16).
• Added: hue-degree-notation support for computing EditInfo (#8444) (@​pamelalozano16).
• Added: import-notation support for computing EditInfo. (#8445) (@​pamelalozano16).
• Added: keyframe-selector-notation support for computing EditInfo (#8457) (@​pamelalozano16).
• Added: length-zero-no-unit support for computing EditInfo (#8459) (@​pamelalozano16).

... (truncated)

Changelog

Sourced from stylelint's changelog.

16.19.1 - 2025-04-25

• Fixed: no-empty-source false positives for non-standard syntaxes (#8548) (@​ybiquitous).

16.19.0 - 2025-04-23

It adds 2 options to 2 rules and fixes 3 bugs.

• Added: exceptWithoutPropertyFallback: [] to function-allowed-list (#8488) (@​ryo-manba).
• Added: ignore: ["four-into-three-edge-values"] to shorthand-property-no-redundant-values (#8527) (@​ryo-manba).
• Fixed: compact formatter with pnpm to newline the exit code (#8534) (@​konomae).
• Fixed: declaration-property-value-no-unknown range and message for invalid syntax within known functions (#8528) (@​ryo-manba).
• Fixed: no-empty-source false positives for --report-needless-disables (#8536) (@​romainmenke).

16.18.0 - 2025-04-06

It adds 2 new rules and fixes 2 bugs. We've turned on these rules, and the syntax-string-no-invalid and layer-name-pattern ones from recent releases, in our standard config.

• Added: color-function-alias-notation rule (#8499) (@​EduardAkhmetshin).
• Added: container-name-pattern rule (#8498) (@​nate10j).
• Fixed: declaration-property-value-no-unknown false positives for math of font-size (#8495) (@​otomad).
• Fixed: font-family-no-missing-generic-family-keyword false positives for math (#8489) (@​otomad).

16.17.0 - 2025-03-26

It adds 1 new rule, support for languageOptions to 2 rules, 1 option to a rule, the --compute-edit-info CLI flag (along with support for EditInfo in 3 rules), and fixes 1 bug. EditInfo is useful for automated fixing tools and editor integrations.

• Added: layer-name-pattern rule (#8474) (@​ryo-manba).
• Added: --compute-edit-info CLI flag (#8473) (@​ryo-manba).
• Added: ignorePreludeOfAtRules: [] to length-zero-no-unit (#8472) (@​ryo-manba).
• Added: at-rule-no-unknown support for languageOptions (#8475) (@​ryo-manba).
• Added: property-no-unknown support for languageOptions (#8476) (@​ryo-manba).
• Added: declaration-block-no-redundant-longhand-properties support for computing EditInfo (#8482) (@​pamelalozano16).
• Added: function-url-quotes support for computing EditInfo (#8483) (@​pamelalozano16).
• Added: selector-attribute-quotes support for computing EditInfo (#8484) (@​pamelalozano16).
• Fixed: custom-property-pattern false negatives for @property preludes (#8468) (@​rohitgs28).

16.16.0 - 2025-03-14

It adds support for computing EditInfo to 22 more rules and reverts a change that added context.lexer to our public API in the previous release.

• Added: at-rule-empty-line-before support for computing EditInfo (#8425) (@​pamelalozano16).
• Added: at-rule-no-deprecated support for computing EditInfo (#8426) (@​pamelalozano16).
• Added: at-rule-no-vendor-prefix support for computing EditInfo (#8427) (@​pamelalozano16).
• Added: color-function-notation support for computing EditInfo (#8437) (@​pamelalozano16).
• Added: declaration-empty-line-before support for computing EditInfo (#8443) (@​pamelalozano16).
• Added: declaration-property-value-keyword-no-deprecated support for computing EditInfo. (#8439) (@​pamelalozano16).
• Added: font-family-name-quotes support for computing EditInfo (#8419) (@​ryo-manba).
• Added: font-weight-notation support for computing EditInfo (#8420) (@​ryo-manba).
• Added: function-calc-no-unspaced-operator support for computing EditInfo (#8440) (@​pamelalozano16).

... (truncated)

Commits

• 25968c6 16.19.1
• 015042b Prepare 16.19.1 (#8551)
• d4c45d3 Refactor to allow node for isConfigurationComment() private utility (#8549)
• 013c0c8 Fix no-empty-source false positives for non-standard syntaxes (#8548)
• 4c63b39 16.19.0
• f7fb8e7 Prepare 16.19.0 (#8523)
• 3c0c86c Fix compact formatter with pnpm to newline the exit code (#8534)
• 660f818 Bump eslint from 9.24.0 to 9.25.0 in the eslint group (#8541)
• ec3ab9c Bump @​changesets/cli from 2.28.1 to 2.29.2 in the changesets group (#8540)
• a512b36 Bump codecov/codecov-action from 5.4.0 to 5.4.2 (#8542)
• Additional commits viewable in compare view

Maintainer changes

This version was pushed to npm by ybiquitous, a new releaser for stylelint since your current version.

Updates stylelint-selector-bem-pattern from 2.1.1 to 4.0.1

Changelog

Sourced from stylelint-selector-bem-pattern's changelog.

4.0.1

• Move eslint-plugin-jest to devDependencies

4.0.0

• Move stylelint to peerDependencies
• Upgrade stylelint to ^16.2.0 This has required the package to move to ESM as required by stylelint https://stylelint.io/migration-guide/to-16/#deprecated-commonjs-api

3.0.1

• Update postcss-bem-linter to ^4.0.1

3.0.0

• Update postcss-bem-linter to ^4.0.0
• Update stylelint to ^15.9.0 - BREAKING CHANGE
  • Drops support for Node 12

Commits

• 0cb4369 4.0.1
• 84c2491 depx: move eslint-plugin-jest to devDependency
• 18c75d7 ci: update ci node versions
• 599d80a update node CI version
• c267429 4.0.0
• 784d290 docs: update README
• 72fb16a feat: update stylelint to 16.2.0
• 5a41de7 feat(package)!: move stylelint to a peerDependency
• b1abef4 remove duplicative lockfile
• 562b9a8 3.0.1
• Additional commits viewable in compare view

Updates storybook from 8.5.3 to 8.6.14

Release notes

Sourced from storybook's releases.

v8.6.14

8.6.14

• CLI: Add skip onboarding, recommended/minimal config - #30930, thanks @​shilman!
• Core: Fix using dates in expect statements - #28413, thanks @​yann-combarnous!
• React Native Web: Fix expo router by setting JSX to automatic - #31484, thanks @​dannyhw!
• Test: Make sure that lit arrays are not cloned - #31435, thanks @​kasperpeulen!

v8.6.13

8.6.13

• Controls: Fix boxShadow on empty controls - #27193, thanks @​H0onnn!
• React Native Web: Update react-native-web - #31324, thanks @​ndelangen!

v8.6.12

8.6.12

• CLI: Only install Visual Test Addon if test feature is selected - #30966, thanks @​ghengeveld!
• Core: Fix telemetry error on Storybook UI - #30953, thanks @​yannbf!
• Ember: Fix ember-template-compiler import for ember 6+ - #30682, thanks @​leoeuclids!
• Next: Upgrade vite-plugin-storybook-nextjs for Next v14 compatibility - #30997, thanks @​kasperpeulen!
• Svelte: Exclude node_modules from docgen - #30981, thanks @​JReinhold!

v8.6.11

8.6.11

• Angular: Fix zone.js support for Angular libraries - #30941, thanks @​valentinpalkovic!

v8.6.10

8.6.10

• Addon-docs: Fix non-string handling in Stories block - #30913, thanks @​JamesIves!
• Nextjs: Fix styled-jsx optimize vite warnings - #30932, thanks @​kasperpeulen!
• React: Fix actImplementation is not a function - #30929, thanks @​kasperpeulen!

v8.6.9

8.6.9

• Next: Fix react aliases in next vite plugin - #30914, thanks @​kasperpeulen!

v8.6.8

8.6.8

• Angular: Export all files in Angular package.json - #30849, thanks @​kasperpeulen!
• CLI: Don't add packageManager entry to package.json automatically - #30855, thanks @​kasperpeulen!
• React: Allow portable stories to be used in SSR - #30847, thanks @​kasperpeulen!
• Svelte: Adjust Svelte typings to include Svelte 5 function components - #30852, thanks @​dummdidumm!
• Telemetry: Make sure that telemetry doesn't fail on init - #30857, thanks @​kasperpeulen!
• Vite: Update HMR filter to target specific story file types - #30845, thanks @​kasperpeulen!

... (truncated)

Changelog

Sourced from storybook's changelog.

8.6.14

• CLI: Add skip onboarding, recommended/minimal config - #30930, thanks @​shilman!
• Core: Fix using dates in expect statements - #28413, thanks @​yann-combarnous!
• React Native Web: Fix expo router by setting JSX to automatic - #31484, thanks @​dannyhw!
• Test: Make sure that lit arrays are not cloned - #31435, thanks @​kasperpeulen!

8.6.13

• Controls: Fix boxShadow on empty controls - #27193, thanks @​H0onnn!
• React Native Web: Update react-native-web - #31324, thanks @​ndelangen!

8.6.12

• CLI: Only install Visual Test Addon if test feature is selected - #30966, thanks @​ghengeveld!
• Core: Fix telemetry error on Storybook UI - #30953, thanks @​yannbf!
• Ember: Fix ember-template-compiler import for ember 6+ - #30682, thanks @​leoeuclids!
• Next: Update vite-plugin-storybook-nextjs to 2.0.0--canary.33.17a2310.0 - #30997, thanks @​kasperpeulen!
• Svelte: Exclude node_modules from docgen - #30981, thanks @​JReinhold!

8.6.11

• Angular: Fix zone.js support for Angular libraries - #30941, thanks @​valentinpalkovic!

8.6.10

• Addon-docs: Fix non-string handling in Stories block - #30913, thanks @​JamesIves!
• Nextjs: Fix styled-jsx optimize vite warnings - #30932, thanks @​kasperpeulen!
• React: Fix actImplementation is not a function - #30929, thanks @​kasperpeulen!

8.6.9

• Next: Fix react aliases in next vite plugin - #30914, thanks @​kasperpeulen!

8.6.8

• Angular: Export all files in Angular package.json - #30849, thanks @​kasperpeulen!
• CLI: Don't add packageManager entry to package.json automatically - #30855, thanks @​kasperpeulen!
• React: Allow portable stories to be used in SSR - #30847, thanks @​kasperpeulen!
• Svelte: Adjust Svelte typings to include Svelte 5 function components - #30852, thanks @​dummdidumm!
• Telemetry: Make sure that telemetry doesn't fail on init - #30857, thanks @​kasperpeulen!
• Vite: Update HMR filter to target specific story file types - #30845, thanks @​kasperpeulen!

8.6.7

• React-Native-Web: Fix errors in CLI template stories - #30821, thanks @​dannyhw!

8.6.6

• Angular: Make sure that polyfills are loaded before the storybook is loaded - #30811, thanks @​kasperpeulen!

... (truncated)

Commits

• ab87178 Bump version from "8.6.13" to "8.6.14" [skip ci]
• 8fa9049 Bump version from "8.6.12" to "8.6.13" [skip ci]
• 1c35b29 Bump version from "8.6.11" to "8.6.12" [skip ci]
• 2afd30d Bump version from "8.6.10" to "8.6.11" [skip ci]
• 23d2037 Bump version from "8.6.9" to "8.6.10" [skip ci]
• 207c2f4 Bump version from "8.6.8" to "8.6.9" [skip ci]
• d4960ea Bump version from "8.6.7" to "8.6.8" [skip ci]
• 019cd1f Bump version from "8.6.6" to "8.6.7" [skip ci]
• 9a7a795 Bump version from "8.6.5" to "8.6.6" [skip ci]
• 4e23d75 Bump version from "8.6.4" to "8.6.5" [skip ci]
• Additional commits viewable in compare view

Updates @babel/helpers from 7.26.7 to 7.27.1

Release notes

Sourced from @​babel/helpers's releases.

v7.27.1 (2025-04-30)

Thanks @​kermanx and @​woaitsAryan for your first PRs!

👓 Spec Compliance

• babel-parser
  • #17254 Allow using of as lexical declaration within for (@​JLHwung)
  • #17230 Disallow get/set in TSPropertySignature (@​JLHwung)
• babel-parser, babel-types
  • #17193 Stricter TSImportType options parsing (@​JLHwung)

🐛 Bug Fix

• babel-plugin-proposal-destructuring-private, babel-plugin-proposal-do-expressions, babel-traverse
  • #17137 fix: do expressions should allow early exit (@​kermanx)
• babel-helper-wrap-function, babel-plugin-transform-async-to-generator
  • #17251 Fix: propagate argument evaluation errors through async promise chain (@​magic-akari)
• babel-helper-remap-async-to-generator, babel-plugin-transform-async-to-generator
  • #17231 fix apply()/call() annotated as pure (@​Lacsw)
• babel-helper-fixtures, babel-parser
  • #17233 Create ChainExpression within TSInstantiationExpression (@​JLHwung)
• babel-generator, babel-parser
  • #17226 Fill optional AST properties when both estree and typescript parser plugin are enabled (Part 2) (@​JLHwung)
• babel-parser
  • #17224 Fill optional AST properties when both estree and typescript parser plugin are enabled (Part 1) (@​JLHwung)
  • #17080 Fix start of TSParameterProperty (@​JLHwung)
• babel-compat-data, babel-preset-env
  • #17228 Update firefox bugfix compat data (@​JLHwung)
• babel-traverse
  • #17156 fix: Objects and arrays with multiple references should not be evaluated (@​liuxingbaoyu)
• babel-generator
  • #17216 Fix: support const type parameter in generator (@​JLHwung)

💅 Polish

• babel-plugin-bugfix-v8-spread-parameters-in-optional-chaining, babel-plugin-proposal-decorators, babel-plugin-transform-arrow-functions, babel-plugin-transform-class-properties, babel-plugin-transform-destructuring, babel-plugin-transform-object-rest-spread, babel-plugin-transform-optional-chaining, babel-plugin-transform-parameters, babel-traverse
  • #17221 Reduce generated names size for the 10th-11th (@​nicolo-ribaudo)

🏠 Internal

• babel-runtime-corejs2, babel-runtime-corejs3, babel-runtime
  • #17263 Remove unused regenerator-runtime dep in @babel/runtime (@​nicolo-ribaudo)
• babel-compat-data, babel-preset-env
  • #17256 Tune plugin compat data (@​JLHwung)
• babel-compat-data, babel-standalone
  • #17236 migrate babel-compat-data build script to mjs (@​JLHwung)
• babel-register
  • #16844 Migrate @babel/register to cts (@​liuxingbaoyu)
• babel-helpers, babel-plugin-transform-async-generator-functions, babel-plugin-transform-regenerator, babel-preset-env, babel-runtime-corejs3
  • #17205 Inline regenerator in the relevant packages (@​nicolo-ribaudo)
• All packages
  • #17207 Enforce node protocol import (@​JLHwung)

... (truncated)

Changelog

Sourced from @​babel/helpers's changelog.

v7.27.1 (2025-04-30)

👓 Spec Compliance

• babel-parser
  • #17254 Allow using of as lexical declaration within for (@​JLHwung)
  • #17230 Disallow get/set in TSPropertySignature (@​JLHwung)
• babel-parser, babel-types
  • #17193 Stricter TSImportType options parsing (@​JLHwung)

🐛 Bug Fix

• babel-plugin-proposal-destructuring-private, babel-plugin-proposal-do-expressions, babel-traverse
  • #17137 fix: do expressions should allow early exit (@​kermanx)
• babel-helper-wrap-function, babel-plugin-transform-async-to-generator
  • #17251 Fix: propagate argument evaluation errors through async promise chain (@​magic-akari)
• babel-helper-remap-async-to-generator, babel-plugin-transform-async-to-generator
  • #17231 fix apply()/call() annotated as pure (@​Lacsw)
• babel-helper-fixtures, babel-parser
  • #17233 Create ChainExpression within TSInstantiationExpression (@​JLHwung)
• babel-generator, babel-parser
  • #17226 Fill optional AST properties when both estree and typescript parser plugin are enabled (Part 2) (@​JLHwung)
• babel-parser
  • #17224 Fill optional AST properties when both estree and typescript parser plugin are enabled (Part 1) (@​JLHwung)
  • #17080 Fix start of TSParameterProperty (@​JLHwung)
• babel-compat-data, babel-preset-env
  • #17228 Update firefox bugfix compat data (@​JLHwung)
• babel-traverse
  • #17156 fix: Objects and arrays with multiple references should not be evaluated (@​liuxingbaoyu)
• babel-generator
  • #17216 Fix: support const type parameter in generator (@​JLHwung)

💅 Polish

• babel-plugin-bugfix-v8-spread-parameters-in-optional-chaining, babel-plugin-proposal-decorators, babel-plugin-transform-arrow-functions, babel-plugin-transform-class-properties, babel-plugin-transform-destructuring, babel-plugin-transform-object-rest-spread, babel-plugin-transform-optional-chaining, babel-plugin-transform-parameters, babel-traverse
  • #17221 Reduce generated names size for the 10th-11th (@​nicolo-ribaudo)

🏠 Internal

• babel-runtime-corejs2, babel-runtime-corejs3, babel-runtime
  • #17263 Remove unused regenerator-runtime dep in @babel/runtime (@​nicolo-ribaudo)
• babel-compat-data, babel-preset-env
  • #17256 Tune plugin compat data (@​JLHwung)
• babel-compat-data, babel-standalone
  • #17236 migrate babel-compat-data build script to mjs (@​JLHwung)
• Other
  • #17232 Bump typescript-eslint to 8.29.1 (@​JLHwung)
  • #17219 test: add basic typescript-eslint integration tests (@​JLHwung)
  • #17205 Inline regenerator in the relevant packages (@​nicolo-ribaudo)
• babel-register
  • #16844 Migrate @babel/register to cts (@​liuxingbaoyu)
• babel-cli, babel-compat-data, babel-core, babel-generator, babel-helper-compilation-targets, babel-helper-fixtures, babel-helper-module-imports, babel-helper-module-transforms, babel-helper-plugin-test-runner, babel-helper-transform-fixture-test-runner, babel-helpers, babel-node, babel-parser, babel-plugin-transform-modules-amd, babel-plugin-transform-modules-commonjs, babel-plugin-transform-modules-systemjs, babel-plugin-transform-modules-umd, babel-plugin-transform-react-display-name, babel-plugin-transform-regenerator, babel-plugin-transform-runtime, babel-plugin-transform-typeof-symbol, babel-plugin-transform-typescript, babel-preset-env, babel-register, babel-standalone, babel-types
  • #17207 Enforce node protocol import (@​JLHwung)
• babel-plugin-transform-regenerator

... (truncated)

Commits

• eebd3a0 v7.27.1
• b1f9184 Reduce interopRequireWildcard size (#16538)
• 9c351e5 Use class and add type definitions for regenerator (#17220)
• 0f95b74 Reduce regeneratorRuntime size (#17213)
• 317e332 Enforce node protocol import (#17207)
• 14ef1e9 Babel 8 cleanup (#17211)
• 97105cb Re-convert regeneratorRuntime to helper format (#17205)
• 1b93b0c Move regenerator files to the relevant packages (#17205)
• b953a8f Remove bundled regeneratorRuntime helper (#17205)
• 6874c25 Prepare LICENSE files for incorporating regenerator (#17205)
• Additional commits viewable in compare view

Updates @babel/runtime from 7.26.7 to 7.27.1

Release notes

Sourced from @​babel/runtime's releases.

v7.27.1 (2025-04-30)

Thanks @​kermanx and @​woaitsAryan for your first PRs!

👓 Spec Compliance

• babel-parser
  • #17254 Allow using of as lexical declaration within for (@​JLHwung)
  • #17230 Disallow get/set in TSPropertySignature (@​JLHwung)
• babel-parser, babel-types
  • #17193 Stricter TSImportType options parsing (@​JLHwung)

🐛 Bug Fix

• babel-plugin-proposal-destructuring-private, babel-plugin-proposal-do-expressions, babel-traverse
  • #17137 fix: do expressions should allow early exit (@​kermanx)
• babel-helper-wrap-function, babel-plugin-transform-async-to-generator
  • #17251 Fix: propagate argument evaluation errors through async promise chain (@​magic-akari)
• babel-helper...

  Description has been truncated

[vercel]

The latest updates on your projects. Learn more about Vercel for Git ↗︎

Name	Status	Preview	Updated (UTC)
deriv-app	❌ Failed (Inspect)		May 20, 2025 9:22am

[github-actions]

A production App ID was automatically generated for this PR. (log)

• PR: build(deps): bump the npm_and_yarn group across 1 directory with 13 updates #18473
• URLs:
  • w/ App ID + Server: https://deriv-app-git-dependabot-npmandyarnnpmandyarn-c7b9d99114.binary.sx?qa_server=red.derivws.com&app_id=38672
  • Original: https://deriv-app-git-dependabot-npmandyarnnpmandyarn-c7b9d99114.binary.sx
• App ID: 38672

Click here to copy & paste above information.

- **PR**: [https://github.com/deriv-com/deriv-app/pull/18473](https://github.com/deriv-com/deriv-app/pull/18473)
- **URLs**:
    - **w/ App ID + Server**: https://deriv-app-git-dependabot-npmandyarnnpmandyarn-c7b9d99114.binary.sx?qa_server=red.derivws.com&app_id=38672
    - **Original**: https://deriv-app-git-dependabot-npmandyarnnpmandyarn-c7b9d99114.binary.sx
- **App ID**: `38672`

[github-actions]

⏳ Generating Lighthouse report...

[github-actions]

Dependency Review

✅ No vulnerabilities or license issues or OpenSSF Scorecard issues found.

OpenSSF Scorecard

Scorecard details

Package	Version	Score	Details
npm/@babel/helpers	7.26.7	🟢 6.3	Details Check Score Reason Code-Review 🟢 8 Found 24/29 approved changesets -- score normalized to 8 Maintained 🟢 10 30 commit(s) and 14 issue activity found in the last 90 days -- score normalized to 10 Packaging ⚠️ -1 packaging workflow not detected Dangerous-Workflow 🟢 10 no dangerous workflow patterns detected Security-Policy 🟢 10 security policy file detected Token-Permissions 🟢 9 detected GitHub workflow tokens with excessive permissions CII-Best-Practices ⚠️ 2 badge detected: InProgress License 🟢 10 license file detected Branch-Protection ⚠️ -1 internal error: error during branchesHandler.setup: internal error: githubv4.Query: Resource not accessible by integration Signed-Releases ⚠️ -1 no releases found SAST ⚠️ 0 SAST tool is not run on all commits -- score normalized to 0 Binary-Artifacts 🟢 10 no binaries found in the repo Pinned-Dependencies ⚠️ 0 dependency not pinned by hash detected -- score normalized to 0 Fuzzing ⚠️ 0 project is not fuzzed Vulnerabilities ⚠️ 0 25 existing vulnerabilities detected
npm/@babel/runtime	7.26.7	🟢 6.3	Details Check Score Reason Code-Review 🟢 8 Found 24/29 approved changesets -- score normalized to 8 Maintained 🟢 10 30 commit(s) and 14 issue activity found in the last 90 days -- score normalized to 10 Packaging ⚠️ -1 packaging workflow not detected Dangerous-Workflow 🟢 10 no dangerous workflow patterns detected Security-Policy 🟢 10 security policy file detected Token-Permissions 🟢 9 detected GitHub workflow tokens with excessive permissions CII-Best-Practices ⚠️ 2 badge detected: InProgress License 🟢 10 license file detected Branch-Protection ⚠️ -1 internal error: error during branchesHandler.setup: internal error: githubv4.Query: Resource not accessible by integration Signed-Releases ⚠️ -1 no releases found SAST ⚠️ 0 SAST tool is not run on all commits -- score normalized to 0 Binary-Artifacts 🟢 10 no binaries found in the repo Pinned-Dependencies ⚠️ 0 dependency not pinned by hash detected -- score normalized to 0 Fuzzing ⚠️ 0 project is not fuzzed Vulnerabilities ⚠️ 0 25 existing vulnerabilities detected
npm/@babel/code-frame	7.27.1	🟢 6.3	Details Check Score Reason Code-Review 🟢 8 Found 24/29 approved changesets -- score normalized to 8 Maintained 🟢 10 30 commit(s) and 14 issue activity found in the last 90 days -- score normalized to 10 Packaging ⚠️ -1 packaging workflow not detected Dangerous-Workflow 🟢 10 no dangerous workflow patterns detected Security-Policy 🟢 10 security policy file detected Token-Permissions 🟢 9 detected GitHub workflow tokens with excessive permissions CII-Best-Practices ⚠️ 2 badge detected: InProgress License 🟢 10 license file detected Branch-Protection ⚠️ -1 internal error: error during branchesHandler.setup: internal error: githubv4.Query: Resource not accessible by integration Signed-Releases ⚠️ -1 no releases found SAST ⚠️ 0 SAST tool is not run on all commits -- score normalized to 0 Binary-Artifacts 🟢 10 no binaries found in the repo Pinned-Dependencies ⚠️ 0 dependency not pinned by hash detected -- score normalized to 0 Fuzzing ⚠️ 0 project is not fuzzed Vulnerabilities ⚠️ 0 25 existing vulnerabilities detected
npm/@babel/helper-string-parser	7.27.1	🟢 6.3	Details Check Score Reason Code-Review 🟢 8 Found 24/29 approved changesets -- score normalized to 8 Maintained 🟢 10 30 commit(s) and 14 issue activity found in the last 90 days -- score normalized to 10 Packaging ⚠️ -1 packaging workflow not detected Dangerous-Workflow 🟢 10 no dangerous workflow patterns detected Security-Policy 🟢 10 security policy file detected Token-Permissions 🟢 9 detected GitHub workflow tokens with excessive permissions CII-Best-Practices ⚠️ 2 badge detected: InProgress License 🟢 10 license file detected Branch-Protection ⚠️ -1 internal error: error during branchesHandler.setup: internal error: githubv4.Query: Resource not accessible by integration Signed-Releases ⚠️ -1 no releases found SAST ⚠️ 0 SAST tool is not run on all commits -- score normalized to 0 Binary-Artifacts 🟢 10 no binaries found in the repo Pinned-Dependencies ⚠️ 0 dependency not pinned by hash detected -- score normalized to 0 Fuzzing ⚠️ 0 project is not fuzzed Vulnerabilities ⚠️ 0 25 existing vulnerabilities detected
npm/@babel/helper-validator-identifier	7.27.1	🟢 6.3	Details Check Score Reason Code-Review 🟢 8 Found 24/29 approved changesets -- score normalized to 8 Maintained 🟢 10 30 commit(s) and 14 issue activity found in the last 90 days -- score normalized to 10 Packaging ⚠️ -1 packaging workflow not detected Dangerous-Workflow 🟢 10 no dangerous workflow patterns detected Security-Policy 🟢 10 security policy file detected Token-Permissions 🟢 9 detected GitHub workflow tokens with excessive permissions CII-Best-Practices ⚠️ 2 badge detected: InProgress License 🟢 10 license file detected Branch-Protection ⚠️ -1 internal error: error during branchesHandler.setup: internal error: githubv4.Query: Resource not accessible by integration Signed-Releases ⚠️ -1 no releases found SAST ⚠️ 0 SAST tool is not run on all commits -- score normalized to 0 Binary-Artifacts 🟢 10 no binaries found in the repo Pinned-Dependencies ⚠️ 0 dependency not pinned by hash detected -- score normalized to 0 Fuzzing ⚠️ 0 project is not fuzzed Vulnerabilities ⚠️ 0 25 existing vulnerabilities detected
npm/@babel/helpers	7.27.1	🟢 6.3	Details Check Score Reason Code-Review 🟢 8 Found 24/29 approved changesets -- score normalized to 8 Maintained 🟢 10 30 commit(s) and 14 issue activity found in the last 90 days -- score normalized to 10 Packaging ⚠️ -1 packaging workflow not detected Dangerous-Workflow 🟢 10 no dangerous workflow patterns detected Security-Policy 🟢 10 security policy file detected Token-Permissions 🟢 9 detected GitHub workflow tokens with excessive permissions CII-Best-Practices ⚠️ 2 badge detected: InProgress License 🟢 10 license file detected Branch-Protection ⚠️ -1 internal error: error during branchesHandler.setup: internal error: githubv4.Query: Resource not accessible by integration Signed-Releases ⚠️ -1 no releases found SAST ⚠️ 0 SAST tool is not run on all commits -- score normalized to 0 Binary-Artifacts 🟢 10 no binaries found in the repo Pinned-Dependencies ⚠️ 0 dependency not pinned by hash detected -- score normalized to 0 Fuzzing ⚠️ 0 project is not fuzzed Vulnerabilities ⚠️ 0 25 existing vulnerabilities detected
npm/@babel/parser	7.27.2	🟢 6.3	Details Check Score Reason Code-Review 🟢 8 Found 24/29 approved changesets -- score normalized to 8 Maintained 🟢 10 30 commit(s) and 14 issue activity found in the last 90 days -- score normalized to 10 Packaging ⚠️ -1 packaging workflow not detected Dangerous-Workflow 🟢 10 no dangerous workflow patterns detected Security-Policy 🟢 10 security policy file detected Token-Permissions 🟢 9 detected GitHub workflow tokens with excessive permissions CII-Best-Practices ⚠️ 2 badge detected: InProgress License 🟢 10 license file detected Branch-Protection ⚠️ -1 internal error: error during branchesHandler.setup: internal error: githubv4.Query: Resource not accessible by integration Signed-Releases ⚠️ -1 no releases found SAST ⚠️ 0 SAST tool is not run on all commits -- score normalized to 0 Binary-Artifacts 🟢 10 no binaries found in the repo Pinned-Dependencies ⚠️ 0 dependency not pinned by hash detected -- score normalized to 0 Fuzzing ⚠️ 0 project is not fuzzed Vulnerabilities ⚠️ 0 25 existing vulnerabilities detected
npm/@babel/runtime	7.27.1	🟢 6.3	Details Check Score Reason Code-Review 🟢 8 Found 24/29 approved changesets -- score normalized to 8 Maintained 🟢 10 30 commit(s) and 14 issue activity found in the last 90 days -- score normalized to 10 Packaging ⚠️ -1 packaging workflow not detected Dangerous-Workflow 🟢 10 no dangerous workflow patterns detected Security-Policy 🟢 10 security policy file detected Token-Permissions 🟢 9 detected GitHub workflow tokens with excessive permissions CII-Best-Practices ⚠️ 2 badge detected: InProgress License 🟢 10 license file detected Branch-Protection ⚠️ -1 internal error: error during branchesHandler.setup: internal error: githubv4.Query: Resource not accessible by integration Signed-Releases ⚠️ -1 no releases found SAST ⚠️ 0 SAST tool is not run on all commits -- score normalized to 0 Binary-Artifacts 🟢 10 no binaries found in the repo Pinned-Dependencies ⚠️ 0 dependency not pinned by hash detected -- score normalized to 0 Fuzzing ⚠️ 0 project is not fuzzed Vulnerabilities ⚠️ 0 25 existing vulnerabilities detected
npm/@babel/template	7.27.2	🟢 6.3	Details Check Score Reason Code-Review 🟢 8 Found 24/29 approved changesets -- score normalized to 8 Maintained 🟢 10 30 commit(s) and 14 issue activity found in the last 90 days -- score normalized to 10 Packaging ⚠️ -1 packaging workflow not detected Dangerous-Workflow 🟢 10 no dangerous workflow patterns detected Security-Policy 🟢 10 security policy file detected Token-Permissions 🟢 9 detected GitHub workflow tokens with excessive permissions CII-Best-Practices ⚠️ 2 badge detected: InProgress License 🟢 10 license file detected Branch-Protection ⚠️ -1 internal error: error during branchesHandler.setup: internal error: githubv4.Query: Resource not accessible by integration Signed-Releases ⚠️ -1 no releases found SAST ⚠️ 0 SAST tool is not run on all commits -- score normalized to 0 Binary-Artifacts 🟢 10 no binaries found in the repo Pinned-Dependencies ⚠️ 0 dependency not pinned by hash detected -- score normalized to 0 Fuzzing ⚠️ 0 project is not fuzzed Vulnerabilities ⚠️ 0 25 existing vulnerabilities detected
npm/@babel/types	7.27.1	🟢 6.3	Details Check Score Reason Code-Review 🟢 8 Found 24/29 approved changesets -- score normalized to 8 Maintained 🟢 10 30 commit(s) and 14 issue activity found in the last 90 days -- score normalized to 10 Packaging ⚠️ -1 packaging workflow not detected Dangerous-Workflow 🟢 10 no dangerous workflow patterns detected Security-Policy 🟢 10 security policy file detected Token-Permissions 🟢 9 detected GitHub workflow tokens with excessive permissions CII-Best-Practices ⚠️ 2 badge detected: InProgress License 🟢 10 license file detected Branch-Protection ⚠️ -1 internal error: error during branchesHandler.setup: internal error: githubv4.Query: Resource not accessible by integration Signed-Releases ⚠️ -1 no releases found SAST ⚠️ 0 SAST tool is not run on all commits -- score normalized to 0 Binary-Artifacts 🟢 10 no binaries found in the repo Pinned-Dependencies ⚠️ 0 dependency not pinned by hash detected -- score normalized to 0 Fuzzing ⚠️ 0 project is not fuzzed Vulnerabilities ⚠️ 0 25 existing vulnerabilities detected
npm/postcss	8.5.3	🟢 4.8	Details Check Score Reason Maintained 🟢 10 25 commit(s) and 11 issue activity found in the last 90 days -- score normalized to 10 Packaging ⚠️ -1 packaging workflow not detected Dangerous-Workflow 🟢 10 no dangerous workflow patterns detected Binary-Artifacts 🟢 10 no binaries found in the repo Code-Review 🟢 5 Found 14/28 approved changesets -- score normalized to 5 Token-Permissions ⚠️ 0 detected GitHub workflow tokens with excessive permissions Pinned-Dependencies ⚠️ 0 dependency not pinned by hash detected -- score normalized to 0 CII-Best-Practices ⚠️ 0 no effort to earn an OpenSSF best practices badge detected Security-Policy ⚠️ 0 security policy file not detected Fuzzing ⚠️ 0 project is not fuzzed License 🟢 10 license file detected Branch-Protection ⚠️ 0 branch protection not enabled on development/release branches Signed-Releases ⚠️ -1 no releases found SAST ⚠️ 0 SAST tool is not run on all commits -- score normalized to 0 Vulnerabilities 🟢 10 0 existing vulnerabilities detected
npm/@babel/code-frame	7.26.2	🟢 6.3	Details Check Score Reason Code-Review 🟢 8 Found 24/29 approved changesets -- score normalized to 8 Maintained 🟢 10 30 commit(s) and 14 issue activity found in the last 90 days -- score normalized to 10 Packaging ⚠️ -1 packaging workflow not detected Dangerous-Workflow 🟢 10 no dangerous workflow patterns detected Security-Policy 🟢 10 security policy file detected Token-Permissions 🟢 9 detected GitHub workflow tokens with excessive permissions CII-Best-Practices ⚠️ 2 badge detected: InProgress License 🟢 10 license file detected Branch-Protection ⚠️ -1 internal error: error during branchesHandler.setup: internal error: githubv4.Query: Resource not accessible by integration Signed-Releases ⚠️ -1 no releases found SAST ⚠️ 0 SAST tool is not run on all commits -- score normalized to 0 Binary-Artifacts 🟢 10 no binaries found in the repo Pinned-Dependencies ⚠️ 0 dependency not pinned by hash detected -- score normalized to 0 Fuzzing ⚠️ 0 project is not fuzzed Vulnerabilities ⚠️ 0 25 existing vulnerabilities detected
npm/@babel/helper-string-parser	7.25.9	🟢 6.3	Details Check Score Reason Code-Review 🟢 8 Found 24/29 approved changesets -- score normalized to 8 Maintained 🟢 10 30 commit(s) and 14 issue activity found in the last 90 days -- score normalized to 10 Packaging ⚠️ -1 packaging workflow not detected Dangerous-Workflow 🟢 10 no dangerous workflow patterns detected Security-Policy 🟢 10 security policy file detected Token-Permissions 🟢 9 detected GitHub workflow tokens with excessive permissions CII-Best-Practices ⚠️ 2 badge detected: InProgress License 🟢 10 license file detected Branch-Protection ⚠️ -1 internal error: error during branchesHandler.setup: internal error: githubv4.Query: Resource not accessible by integration Signed-Releases ⚠️ -1 no releases found SAST ⚠️ 0 SAST tool is not run on all commits -- score normalized to 0 Binary-Artifacts 🟢 10 no binaries found in the repo Pinned-Dependencies ⚠️ 0 dependency not pinned by hash detected -- score normalized to 0 Fuzzing ⚠️ 0 project is not fuzzed Vulnerabilities ⚠️ 0 25 existing vulnerabilities detected
npm/@babel/helper-validator-identifier	7.25.9	🟢 6.3	Details Check Score Reason Code-Review 🟢 8 Found 24/29 approved changesets -- score normalized to 8 Maintained 🟢 10 30 commit(s) and 14 issue activity found in the last 90 days -- score normalized to 10 Packaging ⚠️ -1 packaging workflow not detected Dangerous-Workflow 🟢 10 no dangerous workflow patterns detected Security-Policy 🟢 10 security policy file detected Token-Permissions 🟢 9 detected GitHub workflow tokens with excessive permissions CII-Best-Practices ⚠️ 2 badge detected: InProgress License 🟢 10 license file detected Branch-Protection ⚠️ -1 internal error: error during branchesHandler.setup: internal error: githubv4.Query: Resource not accessible by integration Signed-Releases ⚠️ -1 no releases found SAST ⚠️ 0 SAST tool is not run on all commits -- score normalized to 0 Binary-Artifacts 🟢 10 no binaries found in the repo Pinned-Dependencies ⚠️ 0 dependency not pinned by hash detected -- score normalized to 0 Fuzzing ⚠️ 0 project is not fuzzed Vulnerabilities ⚠️ 0 25 existing vulnerabilities detected
npm/@babel/parser	7.26.7	🟢 6.3	Details Check Score Reason Code-Review 🟢 8 Found 24/29 approved changesets -- score normalized to 8 Maintained 🟢 10 30 commit(s) and 14 issue activity found in the last 90 days -- score normalized to 10 Packaging ⚠️ -1 packaging workflow not detected Dangerous-Workflow 🟢 10 no dangerous workflow patterns detected Security-Policy 🟢 10 security policy file detected Token-Permissions 🟢 9 detected GitHub workflow tokens with excessive permissions CII-Best-Practices ⚠️ 2 badge detected: InProgress License 🟢 10 license file detected Branch-Protection ⚠️ -1 internal error: error during branchesHandler.setup: internal error: githubv4.Query: Resource not accessible by integration Signed-Releases ⚠️ -1 no releases found SAST ⚠️ 0 SAST tool is not run on all commits -- score normalized to 0 Binary-Artifacts 🟢 10 no binaries found in the repo Pinned-Dependencies ⚠️ 0 dependency not pinned by hash detected -- score normalized to 0 Fuzzing ⚠️ 0 project is not fuzzed Vulnerabilities ⚠️ 0 25 existing vulnerabilities detected
npm/@babel/template	7.25.9	🟢 6.3	Details Check Score Reason Code-Review 🟢 8 Found 24/29 approved changesets -- score normalized to 8 Maintained 🟢 10 30 commit(s) and 14 issue activity found in the last 90 days -- score normalized to 10 Packaging ⚠️ -1 packaging workflow not detected Dangerous-Workflow 🟢 10 no dangerous workflow patterns detected Security-Policy 🟢 10 security policy file detected Token-Permissions 🟢 9 detected GitHub workflow tokens with excessive permissions CII-Best-Practices ⚠️ 2 badge detected: InProgress License 🟢 10 license file detected Branch-Protection ⚠️ -1 internal error: error during branchesHandler.setup: internal error: githubv4.Query: Resource not accessible by integration Signed-Releases ⚠️ -1 no releases found SAST ⚠️ 0 SAST tool is not run on all commits -- score normalized to 0 Binary-Artifacts 🟢 10 no binaries found in the repo Pinned-Dependencies ⚠️ 0 dependency not pinned by hash detected -- score normalized to 0 Fuzzing ⚠️ 0 project is not fuzzed Vulnerabilities ⚠️ 0 25 existing vulnerabilities detected
npm/@babel/types	7.26.7	🟢 6.3	Details Check Score Reason Code-Review 🟢 8 Found 24/29 approved changesets -- score normalized to 8 Maintained 🟢 10 30 commit(s) and 14 issue activity found in the last 90 days -- score normalized to 10 Packaging ⚠️ -1 packaging workflow not detected Dangerous-Workflow 🟢 10 no dangerous workflow patterns detected Security-Policy 🟢 10 security policy file detected Token-Permissions 🟢 9 detected GitHub workflow tokens with excessive permissions CII-Best-Practices ⚠️ 2 badge detected: InProgress License 🟢 10 license file detected Branch-Protection ⚠️ -1 internal error: error during branchesHandler.setup: internal error: githubv4.Query: Resource not accessible by integration Signed-Releases ⚠️ -1 no releases found SAST ⚠️ 0 SAST tool is not run on all commits -- score normalized to 0 Binary-Artifacts 🟢 10 no binaries found in the repo Pinned-Dependencies ⚠️ 0 dependency not pinned by hash detected -- score normalized to 0 Fuzzing ⚠️ 0 project is not fuzzed Vulnerabilities ⚠️ 0 25 existing vulnerabilities detected
npm/postcss	8.5.1	🟢 4.8	Details Check Score Reason Maintained 🟢 10 25 commit(s) and 11 issue activity found in the last 90 days -- score normalized to 10 Packaging ⚠️ -1 packaging workflow not detected Dangerous-Workflow 🟢 10 no dangerous workflow patterns detected Binary-Artifacts 🟢 10 no binaries found in the repo Code-Review 🟢 5 Found 14/28 approved changesets -- score normalized to 5 Token-Permissions ⚠️ 0 detected GitHub workflow tokens with excessive permissions Pinned-Dependencies ⚠️ 0 dependency not pinned by hash detected -- score normalized to 0 CII-Best-Practices ⚠️ 0 no effort to earn an OpenSSF best practices badge detected Security-Policy ⚠️ 0 security policy file not detected Fuzzing ⚠️ 0 project is not fuzzed License 🟢 10 license file detected Branch-Protection ⚠️ 0 branch protection not enabled on development/release branches Signed-Releases ⚠️ -1 no releases found SAST ⚠️ 0 SAST tool is not run on all commits -- score normalized to 0 Vulnerabilities 🟢 10 0 existing vulnerabilities detected
npm/regenerator-runtime	0.14.1	🟢 3.7	Details Check Score Reason Packaging ⚠️ -1 packaging workflow not detected Code-Review ⚠️ 2 Found 4/17 approved changesets -- score normalized to 2 Maintained ⚠️ 0 project is archived Token-Permissions ⚠️ 0 detected GitHub workflow tokens with excessive permissions Dangerous-Workflow 🟢 10 no dangerous workflow patterns detected Binary-Artifacts 🟢 10 no binaries found in the repo CII-Best-Practices ⚠️ 0 no effort to earn an OpenSSF best practices badge detected License 🟢 10 license file detected Pinned-Dependencies ⚠️ 1 dependency not pinned by hash detected -- score normalized to 1 Branch-Protection ⚠️ -1 internal error: error during branchesHandler.setup: internal error: githubv4.Query: Resource not accessible by integration Signed-Releases ⚠️ -1 no releases found Security-Policy 🟢 9 security policy file detected Fuzzing ⚠️ 0 project is not fuzzed SAST ⚠️ 0 SAST tool is not run on all commits -- score normalized to 0 Vulnerabilities ⚠️ 0 10 existing vulnerabilities detected

Scanned Manifest Files

package-lock.json

• [email protected]
• @babel/[email protected]
• @babel/[email protected]
• @octokit/[email protected]
• @octokit/[email protected]
• @octokit/[email protected]
• [email protected]
• [email protected]
• @babel/[email protected]
• @babel/[email protected]
• @babel/[email protected]
• @babel/[email protected]
• @babel/[email protected]
• @babel/[email protected]
• @babel/[email protected]
• @babel/[email protected]
• @csstools/[email protected]
• @csstools/[email protected]
• @csstools/[email protected]
• @csstools/[email protected]
• @dual-bundle/[email protected]
• @esbuild/[email protected]
• @esbuild/[email protected]
• @esbuild/[email protected]
• @esbuild/[email protected]
• @esbuild/[email protected]
• @esbuild/[email protected]
• @esbuild/[email protected]
• @esbuild/[email protected]
• @esbuild/[email protected]
• @esbuild/[email protected]
• @esbuild/[email protected]
• @esbuild/[email protected]
• @esbuild/[email protected]
• @esbuild/[email protected]
• @esbuild/[email protected]
• @esbuild/[email protected]
• @esbuild/[email protected]
• @esbuild/[email protected]
• @esbuild/[email protected]
• @esbuild/[email protected]
• @esbuild/[email protected]
• @esbuild/[email protected]
• @esbuild/[email protected]
• @esbuild/[email protected]
• @esbuild/[email protected]
• @keyv/[email protected]
• @lerna/[email protected]
• @octokit/[email protected]
• @octokit/[email protected]
• @octokit/[email protected]
• @octokit/[email protected]
• @octokit/[email protected]
• @octokit/[email protected]
• @octokit/[email protected]
• @octokit/[email protected]
• @octokit/[email protected]
• @octokit/[email protected]
• @storybook/[email protected]
• @storybook/[email protected]
• [email protected]
• [email protected]
• [email protected]
• [email protected]
• [email protected]
• [email protected]
• [email protected]
• [email protected]
• [email protected]
• [email protected]
• [email protected]
• [email protected]
• [email protected]
• [email protected]
• [email protected]
• [email protected]
• [email protected]
• [email protected]
• [email protected]
• [email protected]
• [email protected]
• [email protected]
• [email protected]
• [email protected]
• [email protected]
• [email protected]
• [email protected]
• [email protected]
• [email protected]
• [email protected]
• [email protected]
• @babel/[email protected]
• @babel/[email protected]
• @babel/[email protected]
• @babel/[email protected]
• @babel/[email protected]
• @babel/[email protected]
• @esbuild/[email protected]
• @esbuild/[email protected]
• @esbuild/[email protected]
• @esbuild/[email protected]
• @esbuild/[email protected]
• @esbuild/[email protected]
• @esbuild/[email protected]
• @esbuild/[email protected]
• @esbuild/[email protected]
• @esbuild/[email protected]
• @esbuild/[email protected]
• @esbuild/[email protected]
• @esbuild/[email protected]
• @esbuild/[email protected]
• @esbuild/[email protected]
• @esbuild/[email protected]
• @esbuild/[email protected]
• @esbuild/[email protected]
• @esbuild/[email protected]
• @esbuild/[email protected]
• @esbuild/[email protected]
• @esbuild/[email protected]
• @esbuild/[email protected]
• @esbuild/[email protected]
• @esbuild/[email protected]
• @lerna/[email protected]
• @octokit/[email protected]
• @octokit/[email protected]
• @octokit/[email protected]
• @octokit/[email protected]
• @octokit/[email protected]
• @octokit/[email protected]
• @octokit/[email protected]
• @octokit/[email protected]
• @octokit/[email protected]
• @octokit/[email protected]
• @octokit/[email protected]
• @storybook/[email protected]
• @stylelint/[email protected]
• @stylelint/[email protected]
• @types/[email protected]
• @types/[email protected]
• [email protected]
• [email protected]
• [email protected]
• [email protected]
• [email protected]
• [email protected]
• [email protected]
• [email protected]
• [email protected]
• [email protected]
• [email protected]
• [email protected]
• [email protected]
• [email protected]
• [email protected]
• [email protected]
• [email protected]
• [email protected]
• [email protected]
• [email protected]
• [email protected]
• [email protected]
• [email protected]
• [email protected]
• [email protected]
• [email protected]
• [email protected]
• [email protected]
• [email protected]
• [email protected]
• [email protected]
• [email protected]
• [email protected]
• [email protected]
• [email protected]
• [email protected]
• [email protected]
• [email protected]
• [email protected]
• [email protected]
• [email protected]
• [email protected]
• [email protected]
• [email protected]
• [email protected]
• [email protected]
• [email protected]
• [email protected]
• [email protected]
• [email protected]
• [email protected]
• [email protected]
• [email protected]
• [email protected]
• [email protected]
• [email protected]
• [email protected]
• [email protected]
• [email protected]
• [email protected]
• [email protected]
• [email protected]
• [email protected]
• [email protected]
• [email protected]
• [email protected]

package.json

• stylelint@^16.19.1
• stylelint-selector-bem-pattern@^4.0.1
• stylelint@^13.13.1
• stylelint-selector-bem-pattern@^2.1.0