openstyles/stylus 软件分析报告

基础信息

项目名称:openstyles/stylus

项目徽章:

Security Status

仓库地址:https://github.com/pterodactyl/panel

检测报告地址:https://www.murphysec.com/console/report/1765638658769301504/1765638759424208896

此报告由Murphysec提供

漏洞列表

漏洞名称 漏洞类型 MPS编号 CVE编号 漏洞等级
org.webjars.bower:underscore 代码注入漏洞 代码注入 MPS-2021-3658 CVE-2021-23358 高危

缺陷组件

组件名称 版本 最小修复版本 依赖关系 修复建议
underscore 1.6.0 1.12.1 间接依赖 建议修复

许可证风险

许可证类型 相关组件 许可证风险
MIT 202
CC0-1.0 34
ISC 21
BSD-3-Clause 5
BSD-2-Clause 8
Apache-2.0 7
WTFPL 1
CC-BY-4.0 1
Python-2.0 1
0BSD 1

SBOM清单

组件名称 组件版本 是否直接依赖 仓库
@nodelib/fs.walk 1.2.8 间接依赖 npm
postcss-font-variant 5.0.0 间接依赖 npm
commander 9.4.0 间接依赖 npm
is-plain-object 5.0.0 间接依赖 npm
@aashutoshrathi/word-wrap 1.2.6 间接依赖 npm
node-fetch 2.7.0 直接依赖 npm
postcss-focus-visible 9.0.1 间接依赖 npm
@csstools/postcss-logical-overscroll-behavior 1.0.1 间接依赖 npm
core-util-is 1.0.2 直接依赖 npm
postcss-resolve-nested-selector 0.1.1 间接依赖 npm
postcss-color-rebeccapurple 9.0.2 间接依赖 npm
@csstools/postcss-gradients-interpolation-method 4.0.8 间接依赖 npm
fastest-levenshtein 1.0.16 间接依赖 npm
path-key 3.1.1 间接依赖 npm
indent-string 5.0.0 间接依赖 npm
is-arrayish 0.2.1 间接依赖 npm
svg-tags 1.0.0 间接依赖 npm
callsites 3.1.0 间接依赖 npm
postcss-nesting 12.0.2 间接依赖 npm
picomatch 2.3.1 间接依赖 npm
arrify 1.0.1 间接依赖 npm
@csstools/selector-specificity 3.0.1 间接依赖 npm
flatted 3.1.0 间接依赖 npm
make-dir 2.1.0 间接依赖 npm
codemirror 5.65.10 直接依赖 npm
postcss-overflow-shorthand 5.0.1 间接依赖 npm
spdx-expression-parse 3.0.1 间接依赖 npm
js-tokens 4.0.0 间接依赖 npm
trim-newlines 4.1.1 间接依赖 npm
tr46 0.0.3 间接依赖 npm
colord 2.9.3 间接依赖 npm
is-glob 4.0.3 间接依赖 npm
@humanwhocodes/module-importer 1.0.1 间接依赖 npm
picocolors 1.0.0 间接依赖 npm
has-color 0.1.7 直接依赖 npm
json-stable-stringify-without-jsonify 1.0.1 间接依赖 npm
is-core-module 2.13.0 间接依赖 npm
@csstools/postcss-gamut-mapping 1.0.1 间接依赖 npm
postcss-opacity-percentage 2.0.0 间接依赖 npm
jsonlint 1.6.3 直接依赖 npm
globals 13.23.0 间接依赖 npm
error-ex 1.3.2 直接依赖 npm
postcss-custom-properties 13.3.3 间接依赖 npm
fs.realpath 1.0.0 直接依赖 npm
decamelize-keys 1.1.1 间接依赖 npm
type-check 0.4.0 间接依赖 npm
file-entry-cache 6.0.1 间接依赖 npm
@csstools/postcss-media-queries-aspect-ratio-number-values 2.0.4 间接依赖 npm
cross-spawn 7.0.3 间接依赖 npm
mathml-tag-names 2.1.3 间接依赖 npm
dir-glob 3.0.1 间接依赖 npm
yallist 4.0.0 间接依赖 npm
node-releases 2.0.14 间接依赖 npm
minimist-options 4.1.0 间接依赖 npm
read-pkg-up 8.0.0 间接依赖 npm
update-browserslist-db 1.0.13 间接依赖 npm
stylus 0.58.1 间接依赖 npm
@nodelib/fs.scandir 2.1.5 间接依赖 npm
imurmurhash 0.1.4 间接依赖 npm
slash 3.0.0 间接依赖 npm
@csstools/postcss-exponential-functions 1.0.2 间接依赖 npm
json-schema-traverse 0.4.1 间接依赖 npm
@csstools/postcss-font-format-keywords 3.0.1 间接依赖 npm
fast-levenshtein 2.0.6 间接依赖 npm
supports-color 5.5.0 间接依赖 npm
@csstools/postcss-normalize-display-values 3.0.2 间接依赖 npm
@humanwhocodes/object-schema 2.0.1 间接依赖 npm
micromatch 4.0.5 间接依赖 npm
has-flag 3.0.0 间接依赖 npm
natural-compare 1.4.0 间接依赖 npm
ansi-regex 5.0.1 间接依赖 npm
debug 4.3.4 间接依赖 npm
escalade 3.1.1 间接依赖 npm
isexe 2.0.0 间接依赖 npm
inherits 2.0.4 间接依赖 npm
css-prefers-color-scheme 9.0.1 间接依赖 npm
inflight 1.0.6 直接依赖 npm
strip-ansi 6.0.1 间接依赖 npm
@csstools/postcss-progressive-custom-properties 3.0.3 间接依赖 npm
fill-range 7.0.1 间接依赖 npm
color-name 1.1.3 间接依赖 npm
postcss-preset-env 9.3.0 直接依赖 npm
min-indent 1.0.1 间接依赖 npm
eslint 8.55.0 直接依赖 npm
universalify 1.0.0 间接依赖 npm
css-tree 2.3.1 间接依赖 npm
escape-string-regexp 4.0.0 间接依赖 npm
@xmldom/xmldom 0.7.13 间接依赖 npm
underscore 1.6.0 间接依赖 npm
lie 3.3.0 间接依赖 npm
postcss-logical 7.0.1 间接依赖 npm
import-lazy 4.0.0 间接依赖 npm
jsonfile 6.0.1 间接依赖 npm
normalize-package-data 3.0.3 间接依赖 npm
universal-base64 2.1.0 间接依赖 npm
atob 2.1.2 间接依赖 npm
postcss-clamp 4.1.0 间接依赖 npm
glob-parent 6.0.2 间接依赖 npm
string_decoder 1.1.1 直接依赖 npm
postcss-image-set-function 6.0.2 间接依赖 npm
@eslint/js 8.55.0 间接依赖 npm
svgicons2svgfont 12.0.0 直接依赖 npm
brace-expansion 1.1.11 间接依赖 npm
lz-string-unsafe 1.4.4-fork-1 直接依赖 npm
css-has-pseudo 6.0.1 间接依赖 npm
ajv 6.12.6 间接依赖 npm
caniuse-lite 1.0.30001570 间接依赖 npm
p-limit 3.1.0 间接依赖 npm
mdn-data 2.0.30 间接依赖 npm
postcss-selector-parser 6.0.13 间接依赖 npm
array-union 2.1.0 间接依赖 npm
esutils 2.0.3 间接依赖 npm
redent 4.0.0 间接依赖 npm
minimatch 3.1.2 间接依赖 npm
fastq 1.13.0 间接依赖 npm
postcss-place 9.0.1 间接依赖 npm
graphemer 1.4.0 间接依赖 npm
cosmiconfig 8.2.0 间接依赖 npm
@csstools/postcss-initial 1.0.1 间接依赖 npm
nanoid 3.3.7 间接依赖 npm
@csstools/css-tokenizer 2.2.2 间接依赖 npm
@humanwhocodes/config-array 0.11.13 间接依赖 npm
js-yaml 4.1.0 间接依赖 npm
postcss-selector-not 7.0.1 间接依赖 npm
postcss-double-position-gradients 5.0.3 间接依赖 npm
acorn-jsx 5.3.2 间接依赖 npm
path-is-absolute 1.0.1 直接依赖 npm
which 2.0.2 间接依赖 npm
@csstools/postcss-color-function 3.0.8 间接依赖 npm
lru-cache 6.0.0 间接依赖 npm
@csstools/postcss-logical-overflow 1.0.1 间接依赖 npm
setimmediate 1.0.5 间接依赖 npm
shebang-command 2.0.0 间接依赖 npm
@csstools/postcss-logical-float-and-clear 2.0.1 间接依赖 npm
type-fest 0.20.2 间接依赖 npm
spdx-correct 3.2.0 间接依赖 npm
is-path-inside 3.0.3 间接依赖 npm
tiny-sha1 0.2.1 间接依赖 npm
postcss-focus-within 8.0.1 间接依赖 npm
@csstools/postcss-logical-resize 2.0.1 间接依赖 npm
json-parse-even-better-errors 2.3.1 直接依赖 npm
prelude-ls 1.2.1 间接依赖 npm
wrappy 1.0.2 间接依赖 npm
@nodelib/fs.stat 2.0.5 间接依赖 npm
source-map-resolve 0.6.0 间接依赖 npm
balanced-match 1.0.0 间接依赖 npm
p-locate 5.0.0 间接依赖 npm
sync-version 1.0.1 直接依赖 npm
electron-to-chromium 1.4.615 间接依赖 npm
docopt 0.6.2 间接依赖 npm
@csstools/postcss-color-mix-function 2.0.8 间接依赖 npm
@csstools/postcss-stepped-value-functions 3.0.3 间接依赖 npm
locate-path 6.0.0 间接依赖 npm
needle 3.2.0 间接依赖 npm
optionator 0.9.3 间接依赖 npm
is-plain-obj 1.1.0 间接依赖 npm
@csstools/postcss-scope-pseudo-class 3.0.1 间接依赖 npm
fast-glob 3.3.1 间接依赖 npm
pako 1.0.11 间接依赖 npm
@csstools/postcss-cascade-layers 4.0.2 间接依赖 npm
read-pkg 6.0.0 间接依赖 npm
copy-anything 2.0.6 间接依赖 npm
less 4.2.0 直接依赖 npm
estraverse 5.3.0 间接依赖 npm
resolve-from 4.0.0 间接依赖 npm
@csstools/postcss-oklab-function 3.0.8 间接依赖 npm
ignore 5.2.4 间接依赖 npm
@types/normalize-package-data 2.4.1 间接依赖 npm
has 1.0.3 间接依赖 npm
postcss-color-hex-alpha 9.0.3 间接依赖 npm
@csstools/color-helpers 4.0.0 间接依赖 npm
@babel/code-frame 7.18.6 直接依赖 npm
svg-pathdata 6.0.3 间接依赖 npm
stylus-lang-bundle 0.58.1 直接依赖 npm
webidl-conversions 3.0.1 间接依赖 npm
path-browserify 1.0.1 间接依赖 npm
@csstools/postcss-media-minmax 1.1.1 间接依赖 npm
postcss-color-functional-notation 6.0.3 间接依赖 npm
to-regex-range 5.0.1 间接依赖 npm
@eslint-community/regexpp 4.8.0 间接依赖 npm
global-prefix 3.0.0 间接依赖 npm
cssesc 3.0.0 间接依赖 npm
immediate 3.0.6 间接依赖 npm
global-modules 2.0.0 间接依赖 npm
normalize-range 0.1.2 间接依赖 npm
@csstools/postcss-is-pseudo-class 4.0.4 间接依赖 npm
@csstools/postcss-relative-color-syntax 2.0.8 间接依赖 npm
rimraf 3.0.2 间接依赖 npm
errno 0.1.8 间接依赖 npm
run-parallel 1.2.0 间接依赖 npm
esquery 1.5.0 间接依赖 npm
argparse 2.0.1 间接依赖 npm
postcss-dir-pseudo-class 8.0.1 间接依赖 npm
hard-rejection 2.1.0 间接依赖 npm
@eight04/draggable-list 0.3.0 直接依赖 npm
doctrine 3.0.0 间接依赖 npm
pify 4.0.1 间接依赖 npm
lodash.truncate 4.4.2 间接依赖 npm
eslint-scope 7.2.2 间接依赖 npm
semver 7.5.4 间接依赖 npm
camelcase-keys 7.0.2 间接依赖 npm
normalize-path 3.0.0 间接依赖 npm
whatwg-url 5.0.0 间接依赖 npm
stylelint-bundle 15.10.2 直接依赖 npm
style-search 0.1.0 间接依赖 npm
@csstools/postcss-logical-viewport-units 2.0.4 间接依赖 npm
nomnom 1.8.1 间接依赖 npm
table 6.8.1 间接依赖 npm
postcss-custom-selectors 7.1.6 间接依赖 npm
iconv-lite 0.6.3 间接依赖 npm
mime 1.6.0 间接依赖 npm
postcss-gap-properties 5.0.1 间接依赖 npm
@csstools/media-query-list-parser 2.1.6 间接依赖 npm
acorn 8.10.0 间接依赖 npm
braces 3.0.2 间接依赖 npm
levn 0.4.1 间接依赖 npm
path-type 4.0.0 间接依赖 npm
parse-node-version 1.0.1 间接依赖 npm
postcss-lab-function 6.0.8 间接依赖 npm
validate-npm-package-license 3.0.4 间接依赖 npm
event-lite 0.1.2 间接依赖 npm
@ungap/structured-clone 1.2.0 间接依赖 npm
webext-launch-web-auth-flow 0.1.1 直接依赖 npm
postcss 8.4.32 间接依赖 npm
strip-indent 4.0.0 间接依赖 npm
@csstools/postcss-unset-value 3.0.1 间接依赖 npm
fast-json-stable-stringify 2.1.0 间接依赖 npm
is-fullwidth-code-point 3.0.0 间接依赖 npm
postcss-pseudo-class-any-link 9.0.1 间接依赖 npm
util-deprecate 1.0.2 间接依赖 npm
merge2 1.4.1 间接依赖 npm
css-functions-list 3.2.0 间接依赖 npm
@babel/highlight 7.18.6 间接依赖 npm
postcss-attribute-case-insensitive 6.0.2 间接依赖 npm
microbuffer 1.0.0 间接依赖 npm
@babel/helper-validator-identifier 7.19.1 间接依赖 npm
once 1.4.0 间接依赖 npm
quick-lru 5.1.1 间接依赖 npm
usercss-meta 0.12.0 直接依赖 npm
concat-map 0.0.1 间接依赖 npm
find-up 5.0.0 间接依赖 npm
globby 11.1.0 间接依赖 npm
yocto-queue 0.1.0 间接依赖 npm
slice-ansi 4.0.0 间接依赖 npm
supports-hyperlinks 3.0.0 间接依赖 npm
@csstools/cascade-layer-name-parser 1.0.6 间接依赖 npm
browserslist 4.22.2 间接依赖 npm
css-blank-pseudo 6.0.1 间接依赖 npm
reusify 1.0.4 间接依赖 npm
safer-buffer 2.1.2 间接依赖 npm
sax 1.2.4 间接依赖 npm
postcss-replace-overflow-wrap 4.0.0 间接依赖 npm
process-nextick-args 2.0.1 直接依赖 npm
hosted-git-info 4.1.0 间接依赖 npm
JSV 4.0.2 间接依赖 npm
db-to-cloud 0.7.0 直接依赖 npm
postcss-value-parser 4.2.0 间接依赖 npm
css 3.0.0 间接依赖 npm
cssdb 7.9.1 间接依赖 npm
graceful-fs 4.2.10 间接依赖 npm
color-convert 1.9.3 直接依赖 npm
source-map 0.6.1 间接依赖 npm
prr 1.0.1 间接依赖 npm
source-map-js 1.0.2 间接依赖 npm
is-what 3.14.1 间接依赖 npm
astral-regex 2.0.0 间接依赖 npm
lodash.merge 4.6.2 间接依赖 npm
svgpath 2.6.0 间接依赖 npm
@types/minimist 1.2.2 间接依赖 npm
@csstools/postcss-text-decoration-shorthand 3.0.4 间接依赖 npm
@csstools/postcss-trigonometric-functions 3.0.3 间接依赖 npm
@eight04/read-write-lock 0.1.0 间接依赖 npm
autoprefixer 10.4.16 间接依赖 npm
esrecurse 4.3.0 间接依赖 npm
postcss-page-break 3.0.4 间接依赖 npm
postcss-custom-media 10.0.2 间接依赖 npm
map-obj 4.3.0 间接依赖 npm
@csstools/postcss-ic-unit 3.0.3 间接依赖 npm
strip-json-comments 3.1.1 间接依赖 npm
punycode 2.1.1 间接依赖 npm
flat-cache 3.0.4 间接依赖 npm
@csstools/css-parser-algorithms 2.4.0 间接依赖 npm
kind-of 6.0.3 间接依赖 npm
@csstools/css-color-parser 1.5.0 间接依赖 npm
text-table 0.2.0 间接依赖 npm
import-fresh 3.3.0 间接依赖 npm
svg2ttf 6.0.3 直接依赖 npm
decode-uri-component 0.2.2 间接依赖 npm
eslint-visitor-keys 3.4.3 间接依赖 npm
isarray 1.0.0 直接依赖 npm
@csstools/postcss-nested-calc 3.0.1 间接依赖 npm
queue-microtask 1.2.3 间接依赖 npm
stylelint 15.10.2 间接依赖 npm
fraction.js 4.3.7 间接依赖 npm
@csstools/css-calc 1.1.5 间接依赖 npm
path-exists 4.0.0 间接依赖 npm
lodash 4.17.21 间接依赖 npm
jszip 3.10.1 直接依赖 npm
cubic2quad 1.2.1 间接依赖 npm
@csstools/postcss-hwb-function 3.0.7 间接依赖 npm
@eslint-community/eslint-utils 4.4.0 间接依赖 npm
html-tags 3.3.1 间接依赖 npm
ms 2.1.2 间接依赖 npm
sugarss 4.0.1 间接依赖 npm
globjoin 0.1.4 间接依赖 npm
shebang-regex 3.0.0 间接依赖 npm
postcss-safe-parser 6.0.0 间接依赖 npm
fast-deep-equal 3.1.3 间接依赖 npm
known-css-properties 0.27.0 间接依赖 npm
tslib 2.6.2 间接依赖 npm
chalk 4.1.2 间接依赖 npm
fs-extra 11.1.1 直接依赖 npm
safe-buffer 5.1.2 间接依赖 npm
meow 10.1.5 间接依赖 npm
@eslint/eslintrc 2.1.4 间接依赖 npm
require-from-string 2.0.2 直接依赖 npm
uri-js 4.2.2 间接依赖 npm
espree 9.6.1 间接依赖 npm
deep-is 0.1.4 间接依赖 npm
parent-module 1.0.1 间接依赖 npm
is-extglob 2.1.1 间接依赖 npm
(0)
上一篇 2024年3月7日
下一篇 2024年3月7日

相关推荐

  • gocardless/coach 软件分析报告

    基础信息 项目名称:gocardless/coach 项目徽章: 仓库地址:https://github.com/pterodactyl/panel 检测报告地址:https://www.murphysec.com/console/report/1721229731038302208/1728208306776268800 此报告由Murphysec提供 漏…

    软件分析 2023年11月25日
    0
  • laxyapahuja/bunken 软件分析报告

    基础信息 项目名称:laxyapahuja/bunken 项目徽章: 仓库地址:https://github.com/pterodactyl/panel 检测报告地址:https://www.murphysec.com/console/report/1757332111084617728/1757332111176892416 此报告由Murphysec提供…

    软件分析 2024年2月13日
    0
  • bridgecrewio/checkov 软件分析报告

    基础信息 项目名称:bridgecrewio/checkov 项目徽章: 仓库地址:https://github.com/pterodactyl/panel 检测报告地址:https://www.murphysec.com/console/report/1716467394637594624/1716467394692120576 此报告由Murphysec…

    软件分析 2023年10月23日
    0
  • DreamCats/java-notes 软件分析报告

    基础信息 项目名称:DreamCats/java-notes 项目徽章: 仓库地址:https://github.com/pterodactyl/panel 检测报告地址:https://www.murphysec.com/console/report/1721147481479184384/1729301459102552064 此报告由Murphysec…

    软件分析 2023年11月28日
    0
  • databricks/mlflow 软件分析报告

    基础信息 项目名称:databricks/mlflow 项目徽章: 仓库地址:https://github.com/pterodactyl/panel 检测报告地址:https://www.murphysec.com/console/report/1721124776751136768/1725716068120879104 此报告由Murphysec提供 …

    软件分析 2023年11月18日
    0