Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

[skip netlify]add test #1195

Merged
merged 1 commit into from
Jan 3, 2023
Merged

[skip netlify]add test #1195

merged 1 commit into from
Jan 3, 2023

Conversation

tubone24
Copy link
Owner

@tubone24 tubone24 commented Jan 2, 2023

No description provided.

@github-actions
Copy link
Contributor

github-actions bot commented Jan 2, 2023

depcheck Result

List up libraries that are defined in dependencies and devDependencies in package.json but not used in your codes.

Unused dependencies 
- @popperjs/core
- @sentry/react
- @typescript-eslint/eslint-plugin
- babel-loader
- babel-polyfill
- classnames
- flexboxgrid
- gatsby-legacy-polyfills
- gatsby-plugin-flexsearch
- gatsby-plugin-twitter
- gatsby-react-router-scroll
- html-minifier
- intersection-observer
- md5
- preact
- preact-render-to-string
- react-body-classname
- react-dom
- rimraf
- sass
- typescript
- webpack
Unused devdependencies 
- @babel/core
- @babel/preset-typescript
- @storybook/addon-a11y
- @storybook/addon-controls
- @storybook/addon-essentials
- @storybook/addon-info
- @storybook/addon-interactions
- @storybook/addon-knobs
- @storybook/addon-links
- @storybook/addon-storysource
- @storybook/addon-viewport
- @storybook/builder-webpack5
- @storybook/manager-webpack5
- @textlint-rule/textlint-rule-no-duplicate-abbr
- @types/jest
- @types/react-test-renderer
- @types/responselike
- axe-core
- babel-eslint
- babel-plugin-transform-runtime
- core-js
- cross-env
- css-loader
- cypress
- eslint
- eslint-config-airbnb
- eslint-import-resolver-webpack
- eslint-plugin-import
- eslint-plugin-jsx-a11y
- eslint-plugin-react
- gh-pages
- husky
- identity-obj-proxy
- jest
- jest-environment-jsdom
- memlab
- netlify-cli
- netlify-lambda
- nyc
- prettier
- react-test-renderer
- sass-loader
- start-server-and-test
- stylelint
- stylelint-config-recess-order
- stylelint-config-recommended-scss
- stylelint-config-standard
- stylelint-scss
- textlint
- textlint-filter-rule-allowlist
- textlint-filter-rule-comments
- textlint-rule-aws-spellcheck
- textlint-rule-ja-no-inappropriate-words
- textlint-rule-no-hoso-kinshi-yogo
- textlint-rule-no-mixed-zenkaku-and-hankaku-alphabet
- textlint-rule-no-start-duplicated-conjunction
- textlint-rule-preset-smarthr
- textlint-rule-prh
- textlint-rule-terminology
- ts-jest
- yaml-lint
Missing 
- colors
  - /github/workspace/src/styles/_hover.scss

- @algolia/transporter
  - /github/workspace/src/components/SearchBox/index.tsx

- @algolia/client-search
  - /github/workspace/src/components/SearchBox/index.tsx

- qs
  - /github/workspace/scripts/benchmark.js

@github-actions
Copy link
Contributor

github-actions bot commented Jan 2, 2023

Snyk vulnerability report

OSS packages

Tested 1655 dependencies for known issues, found 8 issues, 19 vulnerable paths.

Issues to fix by upgrading:

Upgrade [email protected] to [email protected] to fix
✗ Regular Expression Denial of Service (ReDoS) [Medium Severity][https://security.snyk.io/vuln/SNYK-JS-SANITIZEHTML-2957526] in [email protected]
introduced by [email protected] > [email protected]

Issues with no direct upgrade or patch:
✗ Regular Expression Denial of Service (ReDoS) [High Severity][https://security.snyk.io/vuln/SNYK-JS-ANSIREGEX-1583908] in [email protected]
introduced by [email protected] > [email protected] > [email protected] > [email protected] > [email protected] > [email protected]
This issue was fixed in versions: 3.0.1, 4.1.1, 5.0.1, 6.0.1
✗ Server-Side Request Forgery (SSRF) [Medium Severity][https://security.snyk.io/vuln/SNYK-JS-AXIOS-1038255] in [email protected]
introduced by [email protected] > [email protected]
This issue was fixed in versions: 0.21.1
✗ Regular Expression Denial of Service (ReDoS) [High Severity][https://security.snyk.io/vuln/SNYK-JS-AXIOS-1579269] in [email protected]
introduced by [email protected] > [email protected] and 1 other path(s)
This issue was fixed in versions: 0.21.3
✗ Denial of Service (DoS) [High Severity][https://security.snyk.io/vuln/SNYK-JS-DECODEURICOMPONENT-3149970] in [email protected]
introduced by [email protected] > [email protected] > [email protected] and 1 other path(s)
This issue was fixed in versions: 0.2.2
✗ Regular Expression Denial of Service (ReDoS) [Medium Severity][https://security.snyk.io/vuln/SNYK-JS-HTMLMINIFIER-3091181] in [email protected]
introduced by [email protected]
No upgrade or patch available
✗ Prototype Pollution [Medium Severity][https://security.snyk.io/vuln/SNYK-JS-JSON5-3182856] in [email protected]
introduced by [email protected] > [email protected] > [email protected] and 9 other path(s)
This issue was fixed in versions: 1.0.2, 2.2.2
✗ Command Injection [High Severity][https://security.snyk.io/vuln/SNYK-JS-LODASHTEMPLATE-1088054] in [email protected]
introduced by [email protected] > [email protected] > [email protected]
No upgrade or patch available

Organization: tubone24
Package manager: yarn
Target file: yarn.lock
Project name: blog
Open source: no
Project path: .
Licenses: enabled

Application

✗ [Medium] Open Redirect
Path: src/templates/index.tsx, line 133
Info: Unsanitized input from the document location flows into url, where it is used as an URL to redirect the user. This may result in an Open Redirect vulnerability.

✔ Test completed

Organization: tubone24
Test type: Static code analysis
Project path: .

Summary:

1 Code issues found
1 [Medium]

IaC

Snyk Infrastructure as Code

  • Snyk testing Infrastructure as Code configuration issues.
    ✔ Test completed.

Issues
No vulnerable paths were found!

Test Summary

Organization: tubone24
Project name: http://github.com/tubone24/blog

✔ Files without issues: 3
✗ Files with issues: 0
Ignored issues: 0
Total issues: 0 [ 0 critical, 0 high, 0 medium, 0 low ]

Tip

New: Share your test results in the Snyk Web UI with the option --report

@coveralls
Copy link
Collaborator

Pull Request Test Coverage Report for Build 3823617598

  • 0 of 0 changed or added relevant lines in 0 files are covered.
  • No unchanged relevant lines lost coverage.
  • Overall coverage remained the same at 85.143%
Totals Coverage Status
Change from base Build 3823525742: 0.0%
Covered Lines: 224
Relevant Lines: 254
💛 - Coveralls

@github-actions
Copy link
Contributor

github-actions bot commented Jan 2, 2023

Memlab leaks report

page-load [7MB] (baseline) [s1] > action-on-page [8.5MB] (target) [s2] > revert [8.6MB] (final) [s3]  
------3 clusters------

--Similar leaks in this run: 548--
--Retained size of leaked objects: 107.4KB--
[<synthetic>] (synthetic) @1 [9.2MB]
  --4 (shortcut)--->  [Window / https://blog.tubone-project24.xyz] (object) @9835 [73.4KB]
  --___push (property)--->  [<closure>] (closure) @250869 [68 bytes]
  --context (internal)--->  [<function scope>] (object) @250871 [572 bytes]
  --n (variable)--->  [u] (closure) @105045 [2.7KB]
  --context (internal)--->  [<function scope>] (object) @115683 [32.1KB]
  --c (variable)--->  [Object] (object) @283893 [31.5KB]
  --449 (element)--->  [Object] (object) @105881 [24 bytes]
  --exports (property)--->  [r] (closure) @104585 [2.1KB]
  --hasData (property)--->  [<closure>] (closure) @112649 [68 bytes]
  --context (internal)--->  [<function scope>] (object) @105005 [1.3KB]
  --e (variable)--->  [Object] (object) @105007 [1KB]
  --1 (element)--->  [Object] (object) @115321 [76 bytes]
  --aaAutocomplete (property)--->  [h] (object) @267909 [348 bytes]
  --$node (property)--->  [U] (object) @304203 [188 bytes]
  --0 (element)--->  [Detached HTMLSpanElement] (native) @38195 [348 bytes]
  --5 (element)--->  [Detached HTMLDivElement] (native) @39393 [196 bytes]
  --5 (element)--->  [Detached HTMLDivElement] (native) @39369 [196 bytes]
  --5 (element)--->  [Detached HTMLElement] (native) @39361 [196 bytes]
  --6 (element)--->  [Detached HTMLElement] (native) @39363 [196 bytes]
  --3 (element)--->  [Detached HTMLDivElement] (native) @39467 [196 bytes]
  --3 (element)--->  [Detached HTMLDivElement] (native) @39413 [196 bytes]
  --4 (element)--->  [Detached HTMLDivElement] (native) @39367 [196 bytes]
  --3 (element)--->  [Detached HTMLDivElement] (native) @39315 [196 bytes]
  --6 (element)--->  [Detached InternalNode] (native) @90994528 [56 bytes]
  --1 (element)--->  [Detached InternalNode] (native) @33363104 [56 bytes]
  --1 (element)--->  [Detached NodeList] (native) @275035264 [56 bytes]

--Similar leaks in this run: 103--
--Retained size of leaked objects: 28.6KB--
[<synthetic>] (synthetic) @1 [9.2MB]
  --4 (shortcut)--->  [Window / https://blog.tubone-project24.xyz] (object) @9835 [73.4KB]
  --___push (property)--->  [<closure>] (closure) @250869 [68 bytes]
  --context (internal)--->  [<function scope>] (object) @250871 [572 bytes]
  --N (variable)--->  [qn] (closure) @110807 [68 bytes]
  --context (internal)--->  [<function scope>] (object) @117773 [16.3KB]
  --Kn (variable)--->  [y] (object) @440997 [368 bytes]
  --props (property)--->  [Object] (object) @475173 [28 bytes]
  --children (property)--->  [Object] (object) @475095 [316 bytes]
  --props (property)--->  [Object] (object) @475443 [56 bytes]
  --children (property)--->  [Object] (object) @462709 [1.2KB]
  --__ (property)--->  [Object] (object) @477583 [1.1KB]
  --__ (property)--->  [Object] (object) @477591 [940 bytes]
  --__ (property)--->  [Object] (object) @466485 [736 bytes]
  --__d (property)--->  [Detached HTMLDivElement] (native) @333195 [272 bytes]
  --3 (element)--->  [Detached HTMLDivElement] (native) @333185 [196 bytes]
  --3 (element)--->  [Detached HTMLDivElement] (native) @333181 [196 bytes]
  --4 (element)--->  [Detached HTMLDivElement] (native) @332881 [8.5KB]
  --6 (element)--->  [Detached HTMLElement] (native) @332899 [15KB]
  --3 (element)--->  [Detached HTMLDivElement] (native) @332897 [13.4KB]
  --3 (element)--->  [Detached Text] (native) @70624160 [96 bytes]
  --2 (element)--->  [Detached HTMLHeadingElement] (native) @70620320 [264 bytes]
  --5 (element)--->  [Detached Text] (native) @70636160 [96 bytes]
  --3 (element)--->  [Detached HTMLImageElement] (native) @70625280 [272 bytes]
  --4 (element)--->  [Detached Text] (native) @70642080 [96 bytes]
  --3 (element)--->  [Detached HTMLSpanElement] (native) @70642240 [432 bytes]
  --5 (element)--->  [Detached Text] (native) @70640480 [96 bytes]
  --3 (element)--->  [Detached HTMLParagraphElement] (native) @70633760 [624 bytes]
  --5 (element)--->  [Detached Text] (native) @70634400 [96 bytes]
  --3 (element)--->  [Detached HTMLParagraphElement] (native) @70644160 [264 bytes]
  --5 (element)--->  [Detached Text] (native) @70629760 [96 bytes]
  --3 (element)--->  [Detached HTMLParagraphElement] (native) @70628960 [264 bytes]
  --5 (element)--->  [Detached Text] (native) @70628800 [96 bytes]
  --3 (element)--->  [Detached HTMLBRElement] (native) @70629280 [168 bytes]
  --3 (element)--->  [Detached Text] (native) @70629120 [96 bytes]
  --3 (element)--->  [Detached HTMLHeadingElement] (native) @70627840 [264 bytes]
  --5 (element)--->  [Detached Text] (native) @70627680 [96 bytes]
  --3 (element)--->  [Detached HTMLHeadingElement] (native) @70628320 [264 bytes]
  --5 (element)--->  [Detached Text] (native) @70630720 [96 bytes]
  --3 (element)--->  [Detached HTMLElement] (native) @70645280 [1.1KB]
  --5 (element)--->  [Detached Text] (native) @70641120 [96 bytes]
  --3 (element)--->  [Detached HTMLHeadingElement] (native) @70641280 [264 bytes]
  --6 (element)--->  [Detached InternalNode] (native) @92057792 [56 bytes]
  --1 (element)--->  [Detached InternalNode] (native) @274606720 [56 bytes]
  --1 (element)--->  [Detached NodeList] (native) @274858624 [56 bytes]

--Similar leaks in this run: 5--
--Retained size of leaked objects: 640 bytes--
[<synthetic>] (synthetic) @1 [9.2MB]
  --4 (shortcut)--->  [Window / https://blog.tubone-project24.xyz] (object) @9835 [73.4KB]
  --__twttrll (property)--->  [Array] (object) @178281 [184 bytes]
  --push (property)--->  [e] (closure) @178283 [68 bytes]
  --context (internal)--->  [<function scope>] (object) @178267 [248 bytes]
  --n (variable)--->  [Object] (object) @178271 [13KB]
  --101 (element)--->  [Object] (object) @189387 [24 bytes]
  --exports (property)--->  [o] (closure) @178419 [68 bytes]
  --context (internal)--->  [<function scope>] (object) @178415 [6.2KB]
  --g (variable)--->  [Detached Text] (native) @40101 [396 bytes]
  --3 (element)--->  [Detached InternalNode] (native) @275402592 [272 bytes]
  --1 (element)--->  [Detached InternalNode] (native) @91723392 [272 bytes]
  --1 (element)--->  [Detached InternalNode] (native) @91723712 [272 bytes]
  --1 (element)--->  [Detached MutationObserverRegistration] (native) @91723552 [272 bytes]
  --1 (element)--->  [Detached MutationObserver] (native) @314720192 [192 bytes]
  --1 (element)--->  [Detached MutationObserver::Delegate] (native) @314720032 [80 bytes]

@tubone24 tubone24 merged commit d277c1a into master Jan 3, 2023
@tubone24 tubone24 deleted the addtest branch January 3, 2023 00:09
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Reviewers
No reviews
Assignees
No one assigned
Labels
None yet
Projects
None yet
Milestone
No milestone
Development

Successfully merging this pull request may close these issues.
2 participants
@tubone24 @coveralls