-
-
Notifications
You must be signed in to change notification settings - Fork 2
/
Copy pathtechstack.yml
366 lines (366 loc) · 14.6 KB
/
techstack.yml
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
98
99
100
101
102
103
104
105
106
107
108
109
110
111
112
113
114
115
116
117
118
119
120
121
122
123
124
125
126
127
128
129
130
131
132
133
134
135
136
137
138
139
140
141
142
143
144
145
146
147
148
149
150
151
152
153
154
155
156
157
158
159
160
161
162
163
164
165
166
167
168
169
170
171
172
173
174
175
176
177
178
179
180
181
182
183
184
185
186
187
188
189
190
191
192
193
194
195
196
197
198
199
200
201
202
203
204
205
206
207
208
209
210
211
212
213
214
215
216
217
218
219
220
221
222
223
224
225
226
227
228
229
230
231
232
233
234
235
236
237
238
239
240
241
242
243
244
245
246
247
248
249
250
251
252
253
254
255
256
257
258
259
260
261
262
263
264
265
266
267
268
269
270
271
272
273
274
275
276
277
278
279
280
281
282
283
284
285
286
287
288
289
290
291
292
293
294
295
296
297
298
299
300
301
302
303
304
305
306
307
308
309
310
311
312
313
314
315
316
317
318
319
320
321
322
323
324
325
326
327
328
329
330
331
332
333
334
335
336
337
338
339
340
341
342
343
344
345
346
347
348
349
350
351
352
353
354
355
356
357
358
359
360
361
362
363
364
365
366
repo_name: Sathyanesan-Lab/Sathyanesan-Lab.github.io
report_id: 1f0781380cc99507a8bec3af028a3786
version: 0.1
repo_type: Public
timestamp: '2024-05-21T21:04:50+00:00'
requested_by: Sathyanesan-Lab
provider: github
branch: main
detected_tools_count: 22
tools:
- name: JavaScript
description: Lightweight, interpreted, object-oriented language with first-class
functions
website_url: https://developer.mozilla.org/en-US/docs/Web/JavaScript
open_source: true
hosted_saas: false
category: Languages & Frameworks
sub_category: Languages
image_url: https://img.stackshare.io/service/1209/javascript.jpeg
detection_source_url: https://github.com/Sathyanesan-Lab/Sathyanesan-Lab.github.io
detection_source: Repo Metadata
- name: Ruby
description: A dynamic, interpreted, open source programming language with a focus
on simplicity and productivity
website_url: https://www.ruby-lang.org
open_source: true
hosted_saas: false
category: Languages & Frameworks
sub_category: Languages
image_url: https://img.stackshare.io/service/989/ruby.png
detection_source_url: https://github.com/Sathyanesan-Lab/Sathyanesan-Lab.github.io
detection_source: Repo Metadata
- name: Nchan
description: A scalable, flexible pub/sub server for the modern web
website_url: https://nchan.io/
open_source: true
hosted_saas: false
category: Application Hosting
sub_category: Realtime Backend / API
image_url: https://img.stackshare.io/service/10894/nchan_icon.png
detection_source_url: https://github.com/Sathyanesan-Lab/Sathyanesan-Lab.github.io/blob/main/package.json
detection_source: package.json
- name: Bundler
description: A consistent environment for tracking and installing gems and versions
website_url: http://bundler.io
open_source: false
hosted_saas: false
category: Build, Test, Deploy
sub_category: Front End Package Manager
image_url: https://img.stackshare.io/service/2988/4e77LXIo_400x400.png
detection_source_url: https://github.com/Sathyanesan-Lab/Sathyanesan-Lab.github.io/blob/main/minimal-mistakes-jekyll.gemspec
detection_source: minimal-mistakes-jekyll.gemspec
- name: Git
description: Fast, scalable, distributed revision control system
website_url: http://git-scm.com/
open_source: true
hosted_saas: false
category: Build, Test, Deploy
sub_category: Version Control System
image_url: https://img.stackshare.io/service/1046/git.png
detection_source_url: https://github.com/Sathyanesan-Lab/Sathyanesan-Lab.github.io
detection_source: Repo Metadata
- name: GitHub Actions
description: Automate your workflow from idea to production
website_url: https://github.com/features/actions
open_source: false
hosted_saas: true
category: Build, Test, Deploy
sub_category: Continuous Integration
image_url: https://img.stackshare.io/service/11563/actions.png
detection_source_url: https://github.com/Sathyanesan-Lab/Sathyanesan-Lab.github.io/blob/main/.github/workflows/bad-pr.yml
detection_source: ".github/workflows/bad-pr.yml"
- name: RubyGems
description: Easily download, install, and use ruby software packages on your system
website_url: https://rubygems.org/
open_source: false
hosted_saas: false
category: Build, Test, Deploy
sub_category: Package Managers
image_url: https://img.stackshare.io/service/12795/5jL6-BA5_400x400.jpeg
detection_source_url: https://github.com/Sathyanesan-Lab/Sathyanesan-Lab.github.io/blob/main/minimal-mistakes-jekyll.gemspec
detection_source: minimal-mistakes-jekyll.gemspec
- name: Travis CI
description: A hosted continuous integration service for open source and private
projects
website_url: http://travis-ci.com/
open_source: false
hosted_saas: true
category: Build, Test, Deploy
sub_category: Continuous Integration
image_url: https://img.stackshare.io/service/460/Lu6cGu0z_400x400.png
detection_source_url: https://github.com/Sathyanesan-Lab/Sathyanesan-Lab.github.io/blob/main/.travis.yml
detection_source: ".travis.yml"
- name: npm
description: The package manager for JavaScript.
website_url: https://www.npmjs.com/
open_source: false
hosted_saas: false
category: Build, Test, Deploy
sub_category: Front End Package Manager
image_url: https://img.stackshare.io/service/1120/lejvzrnlpb308aftn31u.png
detection_source_url: https://github.com/Sathyanesan-Lab/Sathyanesan-Lab.github.io/blob/main/package.json
detection_source: package.json
- name: jekyll
description: Jekyll is a simple, blog aware, static site generator
package_url: https://rubygems.org/jekyll
version: '3.7'
license: MIT
open_source: true
hosted_saas: false
category: Libraries
sub_category: RubyGems Packages
image_url: https://img.stackshare.io/package/18863/default_2fe576f13c88e20e645ee0a744c045ee730bcad6.png
detection_source_url: https://github.com/Sathyanesan-Lab/Sathyanesan-Lab.github.io/blob/main/minimal-mistakes-jekyll.gemspec
detection_source: minimal-mistakes-jekyll.gemspec
vulnerabilities:
- name: Jekyll allows attackers to access arbitrary files by specifying a symlink
cve_id: CVE-2018-17567
cve_url: https://github.com/advisories/GHSA-4xjh-m3qx-49wc
detected_date: Aug 22
severity: high
first_patched: 3.7.4
- name: nokogiri
description: Nokogiri
package_url: https://rubygems.org/nokogiri
version: 1.11.4
license: MIT
open_source: true
hosted_saas: false
category: Libraries
sub_category: RubyGems Packages
image_url: https://img.stackshare.io/package/18823/default_b8fbb83e23c963442e15398c5b56262cc6267d6f.png
detection_source_url: https://github.com/Sathyanesan-Lab/Sathyanesan-Lab.github.io/blob/main/Gemfile
detection_source: Gemfile
vulnerabilities:
- name: Integer Overflow or Wraparound in libxml2 affects Nokogiri
cve_id:
cve_url: https://github.com/advisories/GHSA-cgx6-hpwq-fhv5
detected_date: May 19
severity: high
first_patched: 1.13.5
- name: Improper Restriction of XML External Entity Reference (XXE) in Nokogiri
on JRuby
cve_id: CVE-2021-41098
cve_url: https://github.com/advisories/GHSA-2rr5-8q37-2w7h
detected_date: Sep 28
severity: high
first_patched: 1.12.5
- name: Denial of Service (DoS) in Nokogiri on JRuby
cve_id:
cve_url: https://github.com/advisories/GHSA-gx8x-g87m-h5q6
detected_date: Apr 12
severity: high
first_patched: 1.13.4
- name: Out-of-bounds Write in zlib affects Nokogiri
cve_id:
cve_url: https://github.com/advisories/GHSA-v6gp-9mmm-c6p5
detected_date: Apr 12
severity: high
first_patched: 1.13.4
- name: Nokogiri Inefficient Regular Expression Complexity
cve_id: CVE-2022-24836
cve_url: https://github.com/advisories/GHSA-crjr-9rc5-ghw8
detected_date: Apr 12
severity: high
first_patched: 1.13.4
- name: Nokogiri Improperly Handles Unexpected Data Type
cve_id: CVE-2022-29181
cve_url: https://github.com/advisories/GHSA-xh29-r2w5-wx8m
detected_date: May 24
severity: high
first_patched: 1.13.6
- name: Nokogiri has vulnerable dependencies on libxml2 and libxslt
cve_id: CVE-2021-30560
cve_url: https://github.com/advisories/GHSA-59gp-qqm7-cw4j
detected_date: Jun 28
severity: high
first_patched: 1.13.2
- name: Nokogiri affected by zlib's Out-of-bounds Write vulnerability
cve_id: CVE-2018-25032
cve_url: https://github.com/advisories/GHSA-jc36-42cf-vqwj
detected_date: Jun 28
severity: high
first_patched: 1.13.4
- name: Vulnerable dependencies in Nokogiri
cve_id:
cve_url: https://github.com/advisories/GHSA-fq42-c5rg-92c2
detected_date: Feb 26
severity: high
first_patched: 1.13.2
- name: Nokogiri update packaged libxml2 to v2.12.5 to resolve CVE-2024-25062
cve_id:
cve_url: https://github.com/advisories/GHSA-xc9x-jj77-9p9j
detected_date: Feb 6
severity: moderate
first_patched: 1.15.6
- name: Update bundled libxml2 to v2.10.3 to resolve multiple CVEs
cve_id:
cve_url: https://github.com/advisories/GHSA-2qc6-mcvw-92cw
detected_date: Oct 18
severity: moderate
first_patched: 1.13.9
- name: Use-after-free in libxml2 via Nokogiri::XML::Reader
cve_id:
cve_url: https://github.com/advisories/GHSA-vcc3-rw6f-jv97
detected_date: Mar 19
severity: moderate
first_patched: 1.15.6
- name: XML Injection in Xerces Java affects Nokogiri
cve_id:
cve_url: https://github.com/advisories/GHSA-xxx9-3xcr-gjj3
detected_date: Apr 12
severity: moderate
first_patched: 1.13.4
- name: Nokogiri updates packaged libxml2 to v2.10.4 to resolve multiple CVEs
cve_id:
cve_url: https://github.com/advisories/GHSA-pxvg-2qj5-37jq
detected_date: Apr 12
severity: moderate
first_patched: 1.14.3
- name: 'Duplicate Advisory: Nokogiri updates packaged libxml2 to v2.12.7 to resolve
CVE-2024-34459'
cve_id:
cve_url: https://github.com/advisories/GHSA-r3w4-36x6-7r99
detected_date: May 15
severity: low
first_patched: 1.16.5
- name: Nokogiri updates packaged libxml2 to v2.12.7 to resolve CVE-2024-34459
cve_id:
cve_url: https://github.com/advisories/GHSA-r95h-9x8f-r3f7
detected_date: May 14
severity: low
first_patched: 1.16.5
- name: github-pages
description: Bootstrap the GitHub Pages Jekyll environment locally
package_url: https://rubygems.org/github-pages
license: MIT
open_source: true
hosted_saas: false
category: Libraries
sub_category: RubyGems Packages
image_url: https://img.stackshare.io/package/rubygems/image.png
detection_source_url: https://github.com/Sathyanesan-Lab/Sathyanesan-Lab.github.io/blob/main/Gemfile
detection_source: Gemfile
- name: jekyll-feed
description: A Jekyll plugin to generate an Atom feed of your Jekyll posts
package_url: https://rubygems.org/jekyll-feed
version: '0.1'
license: MIT
open_source: true
hosted_saas: false
category: Libraries
sub_category: RubyGems Packages
image_url: https://img.stackshare.io/package/19149/default_b0a1033a29112f6f50b1dd3157e5fbf94dd2778a.png
detection_source_url: https://github.com/Sathyanesan-Lab/Sathyanesan-Lab.github.io/blob/main/minimal-mistakes-jekyll.gemspec
detection_source: minimal-mistakes-jekyll.gemspec
- name: jekyll-gist
description: Liquid tag for displaying GitHub Gists in Jekyll sites
package_url: https://rubygems.org/jekyll-gist
version: '1.5'
license: MIT
open_source: true
hosted_saas: false
category: Libraries
sub_category: RubyGems Packages
image_url: https://img.stackshare.io/package/rubygems/image.png
detection_source_url: https://github.com/Sathyanesan-Lab/Sathyanesan-Lab.github.io/blob/main/minimal-mistakes-jekyll.gemspec
detection_source: minimal-mistakes-jekyll.gemspec
- name: jekyll-paginate
description: Built-in Pagination Generator for Jekyll
package_url: https://rubygems.org/jekyll-paginate
version: '1.1'
license: MIT
open_source: true
hosted_saas: false
category: Libraries
sub_category: RubyGems Packages
image_url: https://img.stackshare.io/package/19371/default_ac0591cdb829f62a4300d942f96aea1bb642351d.png
detection_source_url: https://github.com/Sathyanesan-Lab/Sathyanesan-Lab.github.io/blob/main/minimal-mistakes-jekyll.gemspec
detection_source: minimal-mistakes-jekyll.gemspec
- name: jekyll-sitemap
description: Automatically generate a sitemap.xml for your Jekyll site
package_url: https://rubygems.org/jekyll-sitemap
version: '1.3'
license: MIT
open_source: true
hosted_saas: false
category: Libraries
sub_category: RubyGems Packages
image_url: https://img.stackshare.io/package/19321/default_31ccb7684f50eae9f0c40cb9965cc32299f8935e.png
detection_source_url: https://github.com/Sathyanesan-Lab/Sathyanesan-Lab.github.io/blob/main/minimal-mistakes-jekyll.gemspec
detection_source: minimal-mistakes-jekyll.gemspec
- name: kramdown
description: Kramdown is yet-another-markdown-parser but fast
package_url: https://rubygems.org/kramdown
version: 2.3.1
license: MIT
open_source: true
hosted_saas: false
category: Libraries
sub_category: RubyGems Packages
image_url: https://img.stackshare.io/package/18939/default_9835367d7a13be70dd38d3b7dfa4b8514b31a43d.png
detection_source_url: https://github.com/Sathyanesan-Lab/Sathyanesan-Lab.github.io/blob/main/Gemfile
detection_source: Gemfile
- name: rake
description: Rake is a Make-like program implemented in Ruby
package_url: https://rubygems.org/rake
version: 12.3.3
license: MIT
open_source: true
hosted_saas: false
category: Libraries
sub_category: RubyGems Packages
image_url: https://img.stackshare.io/package/18812/default_f582e4648f4682adb72d2b201218cda7f8e894ac.png
detection_source_url: https://github.com/Sathyanesan-Lab/Sathyanesan-Lab.github.io/blob/main/minimal-mistakes-jekyll.gemspec
detection_source: minimal-mistakes-jekyll.gemspec
- name: webrick
description: WEBrick is an HTTP server toolkit that can be configured as an HTTPS
server
package_url: https://rubygems.org/webrick
version: '1.7'
license: BSD-2-Clause
open_source: true
hosted_saas: false
category: Libraries
sub_category: RubyGems Packages
image_url: https://img.stackshare.io/package/19444/default_e747a715ce0379afdb68c78657d70e4a512bf5f4.png
detection_source_url: https://github.com/Sathyanesan-Lab/Sathyanesan-Lab.github.io/blob/main/Gemfile
detection_source: Gemfile
- name: npm-run-all
description: A CLI tool to run multiple npm-scripts in parallel or sequential
package_url: https://www.npmjs.com/npm-run-all
version: 4.1.5
license: MIT
open_source: true
hosted_saas: false
category: Libraries
sub_category: npm Packages
image_url: https://img.stackshare.io/package/15926/default_b45165a5d30e541ab11711a34a78209b3e8ed7fd.png
detection_source_url: https://github.com/Sathyanesan-Lab/Sathyanesan-Lab.github.io/blob/main/package.json
detection_source: package.json
- name: onchange
description: Use glob patterns to watch file sets and run a command when anything
is added
package_url: https://www.npmjs.com/onchange
version: 7.1.0
license: MIT
open_source: true
hosted_saas: false
category: Libraries
sub_category: npm Packages
image_url: https://img.stackshare.io/package/16706/default_9b37c4b9479b5cf61478ac117da829ccdd0ed0a0.png
detection_source_url: https://github.com/Sathyanesan-Lab/Sathyanesan-Lab.github.io/blob/main/package.json
detection_source: package.json
- name: uglify-js
description: JavaScript parser
package_url: https://www.npmjs.com/uglify-js
version: 3.13.6
license: BSD-2-Clause
open_source: true
hosted_saas: false
category: Libraries
sub_category: npm Packages
image_url: https://img.stackshare.io/package/15900/default_1d65e37e65b7f80761374f0202776043277d505d.png
detection_source_url: https://github.com/Sathyanesan-Lab/Sathyanesan-Lab.github.io/blob/main/package.json
detection_source: package.json