fix(deps): update dependency @vercel/analytics to v2 · squarestack/github-invite@1e7190c

Triggered via pull request March 10, 2026 18:59

opened #698

Status Failure

Total duration 2m 6s

Artifacts –

review.yml

on: pull_request

1 error and 10 warnings

Dependency review detected vulnerable packages.

npm/deepmerge has an OpenSSF Scorecard of 2.3, which is less than this repository's threshold of 3.

npm/debug has an OpenSSF Scorecard of 2.6, which is less than this repository's threshold of 3.

npm/crc-32 has an OpenSSF Scorecard of 2.8, which is less than this repository's threshold of 3.

npm/copy-paste has an OpenSSF Scorecard of 1.8, which is less than this repository's threshold of 3.

npm/buffer-from has an OpenSSF Scorecard of 2, which is less than this repository's threshold of 3.

npm/bindings has an OpenSSF Scorecard of 2.3, which is less than this repository's threshold of 3.

npm/base64-js has an OpenSSF Scorecard of 2.1, which is less than this repository's threshold of 3.

npm/abort-controller has an OpenSSF Scorecard of 2.1, which is less than this repository's threshold of 3.

npm/@kwsites/promise-deferred has an OpenSSF Scorecard of 2, which is less than this repository's threshold of 3.

npm/@kwsites/file-exists has an OpenSSF Scorecard of 2, which is less than this repository's threshold of 3.