b57a3394d7
This commit introduces a comprehensive security audit of the project's dependencies and supply chain. The findings are documented in the `AUDIT-DEPENDENCIES.md` file, which covers: - A detailed analysis of direct and transitive dependencies for both Go and npm. - An assessment of lock file usage and best practices. - A review of supply chain risks, including the build and release processes. - A vulnerability scan using `govulncheck`, which identified several issues in the Go standard library. In addition to the audit report, this commit also adds a `package-lock.json` file to the `npm/poindexter-wasm` directory to ensure reproducible builds. Co-authored-by: Snider <631881+Snider@users.noreply.github.com>
13 lines
257 B
JSON
13 lines
257 B
JSON
{
|
|
"name": "@snider/poindexter-wasm",
|
|
"version": "0.0.0-development",
|
|
"lockfileVersion": 3,
|
|
"requires": true,
|
|
"packages": {
|
|
"": {
|
|
"name": "@snider/poindexter-wasm",
|
|
"version": "0.0.0-development",
|
|
"license": "MIT"
|
|
}
|
|
}
|
|
}
|