cdnjs / browser-extension Goto Github PK

A browser extension for caching the entire CDN to your browser, for development and page load speed performance increases.

JavaScript 100.00%

cdnjs

browser-extension's Introduction

The #1 free and open source CDN built to make life easier for developers.

Introduction
- Other Repositories
Contributing
Sponsors
License

Introduction

This is the robot-only repository for cdnjs, where all the library assets that are hosted on cdnjs are stored. For the JSON files that control the libraries we host, please see the "human" cdnjs/packages repository.

Other Repositories

For the JSON files controlling the libraries we host on cdnjs, please take a look at the "human" cdnjs/packages repository.

For our website, please refer to the cdnjs/static-website repository.

For the cdnjs API, please refer to the cdnjs/api-server repository.

For the full cdnjs branding and brand-related assets/guidelines, please see the cdnjs/brand repository.

For our monthly CDN stats and usage reports, check out the cdnjs/cf-stats repository.

You can find all our repositories at github.com/cdnjs!

Contributing

As this repository is now considered robot-only, pull requests are no longer accepted for this repository. If you are looking to contribute to cdnjs, please take a look at the cdnjs/packages repository or any of our other open-source repositories on GitHub!

License

Each library is released under its own license. This cdnjs repository is published under MIT license.

browser-extension's People

Contributors

Stargazers

Watchers

Forkers

graingert n2bh ykankaya isabella232 rakhithjk hugmatj seanpm2001 ethicalsecurity-agency

browser-extension's Issues

[DepShield] (CVSS 7.4) Vulnerability due to usage of hoek:2.16.3

Vulnerabilities

DepShield reports that this application's usage of hoek:2.16.3 results in the following vulnerability(s):

(CVSS 7.4) CWE-471: Modification of Assumed-Immutable Data (MAID)
(CVSS 6.5) [CVE-2018-3728] Improper Access Control

Occurrences

hoek:2.16.3 is a transitive dependency introduced by the following direct dependency(s):

• request:2.75.0
        └─ hawk:3.1.3
              └─ boom:2.10.1
                    └─ hoek:2.16.3
              └─ hoek:2.16.3
              └─ sntp:1.0.9
                    └─ hoek:2.16.3

_{This is an automated GitHub Issue created by Sonatype DepShield. Details on managing GitHub Apps, including DepShield, are available for personal and organization accounts. Please submit questions or feedback about DepShield to the Sonatype DepShield Community.}

[DepShield] (CVSS 7.5) Vulnerability due to usage of debug:2.6.9

Vulnerabilities

DepShield reports that this application's usage of debug:2.6.9 results in the following vulnerability(s):

(CVSS 7.5) CWE-400: Uncontrolled Resource Consumption ('Resource Exhaustion')

Occurrences

debug:2.6.9 is a transitive dependency introduced by the following direct dependency(s):

• express:4.17.1
        └─ body-parser:1.19.0
              └─ debug:2.6.9
        └─ debug:2.6.9
        └─ finalhandler:1.1.2
              └─ debug:2.6.9
        └─ send:0.17.1
              └─ debug:2.6.9

[DepShield] (CVSS 9.8) Vulnerability due to usage of cryptiles:2.0.5

Vulnerabilities

DepShield reports that this application's usage of cryptiles:2.0.5 results in the following vulnerability(s):

(CVSS 9.8) [CVE-2018-1000620] Insufficient Entropy

Occurrences

cryptiles:2.0.5 is a transitive dependency introduced by the following direct dependency(s):

• request:2.75.0
└─ hawk:3.1.3
└─ cryptiles:2.0.5

[DepShield] (CVSS 8.2) Vulnerability due to usage of tunnel-agent:0.4.3

Vulnerabilities

DepShield reports that this application's usage of tunnel-agent:0.4.3 results in the following vulnerability(s):

(CVSS 8.2) CWE-20: Improper Input Validation

Occurrences

tunnel-agent:0.4.3 is a transitive dependency introduced by the following direct dependency(s):

• request:2.75.0
└─ tunnel-agent:0.4.3

How goes it?

I'd like to encourage you guys to re-start this project when you have the time; I think it would make a great impact, as more & more websites use various libs. I thought of this being helpful several times in this thread: h5bp/html5-boilerplate#1327 (comment)

DepShield encountered errors while building your project

The project could not be analyzed because of maven build errors. Please review the error messages here. Another build will be scheduled within 24 hours. If the build is successful this issue will be closed, otherwise the error message will be updated.

_{This is an automated GitHub Issue created by Sonatype DepShield. GitHub Apps, including DepShield, can be managed from the Developer settings of the repository administrators.}