privilegedescalation-engineer[bot]
aa1db9215a
* chore: replace Dependabot references with Renovate - SECURITY.md: update to mention Renovate (org-wide Mend Renovate) - PROJECT_ASSESSMENT.md: mark Renovate as integrated (org-wide config) Closes PRI-389. Parent PRI-387. Co-Authored-By: Paperclip <noreply@paperclip.ing> * fix: override picomatch >=4.0.4 and vite >=6.4.2 to patch high-severity vulnerabilities Resolves 3 high-severity vulnerabilities from pnpm audit: - GHSA-c2c7-rcm5-vvqj: Picomatch ReDoS via extglob quantifiers (>=4.0.0 <4.0.4) - GHSA-p9ff-h696-f583: Vite arbitrary file read via dev server WebSocket - GHSA-4w7w-66w2-5vf9: Vite path traversal in optimized deps .map handling Also addresses moderate GHSA-3v7f-55p6-f55p (picomatch method injection). Remaining vulnerabilities (moderate/low) are in transitive dependencies managed by @kinvolk/headlamp-plugin and @headlamp-k8s/eslint-config which require upstream updates to those packages. Co-Authored-By: Paperclip <noreply@paperclip.ing> --------- Co-authored-by: Chris Farhood <chris@farhood.org> Co-authored-by: Paperclip <noreply@paperclip.ing>
67 lines
1.9 KiB
JSON
67 lines
1.9 KiB
JSON
{
|
|
"name": "headlamp-polaris",
|
|
"version": "1.0.0",
|
|
"description": "Headlamp plugin for Fairwinds Polaris audit results",
|
|
"repository": {
|
|
"type": "git",
|
|
"url": "https://github.com/privilegedescalation/headlamp-polaris-plugin.git"
|
|
},
|
|
"bugs": {
|
|
"url": "https://github.com/privilegedescalation/headlamp-polaris-plugin/issues"
|
|
},
|
|
"homepage": "https://github.com/privilegedescalation/headlamp-polaris-plugin#readme",
|
|
"author": "privilegedescalation",
|
|
"license": "Apache-2.0",
|
|
"packageManager": "pnpm@10.32.1",
|
|
"scripts": {
|
|
"start": "headlamp-plugin start",
|
|
"build": "headlamp-plugin build",
|
|
"package": "headlamp-plugin package",
|
|
"tsc": "tsc --noEmit",
|
|
"lint": "eslint --ext .ts,.tsx src/",
|
|
"lint:fix": "eslint --ext .ts,.tsx --fix src/",
|
|
"format": "prettier --write src/",
|
|
"format:check": "prettier --check src/",
|
|
"test": "vitest run",
|
|
"test:watch": "vitest",
|
|
"e2e": "playwright test",
|
|
"e2e:headed": "playwright test --headed"
|
|
},
|
|
"peerDependencies": {
|
|
"react": "^18.0.0",
|
|
"react-dom": "^18.0.0"
|
|
},
|
|
"pnpm": {
|
|
"overrides": {
|
|
"tar": "^7.5.11",
|
|
"undici": "^7.24.3",
|
|
"flatted": "^3.4.2",
|
|
"lodash": ">=4.18.0",
|
|
"picomatch": ">=4.0.4",
|
|
"vite": ">=6.4.2"
|
|
}
|
|
},
|
|
"devDependencies": {
|
|
"@kinvolk/headlamp-plugin": "^0.13.0",
|
|
"@mui/material": "^5.15.14",
|
|
"@playwright/test": "^1.58.2",
|
|
"@testing-library/jest-dom": "^6.4.8",
|
|
"@testing-library/react": "^16.0.0",
|
|
"@testing-library/user-event": "^14.5.2",
|
|
"@types/react": "^19.2.14",
|
|
"@types/react-dom": "^19.2.3",
|
|
"@vitest/coverage-v8": "^3.2.4",
|
|
"@headlamp-k8s/eslint-config": "^0.6.0",
|
|
"eslint": "^8.57.0",
|
|
"jsdom": "^24.0.0",
|
|
"prettier": "^2.8.8",
|
|
"react": "^18.3.1",
|
|
"react-dom": "^18.3.1",
|
|
"react-router-dom": "^5.3.0",
|
|
"tar": "^7.5.11",
|
|
"typescript": "~5.6.2",
|
|
"undici": "^7.24.3",
|
|
"vitest": "^3.0.5"
|
|
}
|
|
}
|