Conversation
|
|
![sourcery-ai[bot]](https://avatars.githubusercontent.com/in/48477?s=60&v=4){kind=small}
|
The latest updates on your projects. Learn more about Vercel for GitHub.
2 Skipped Deployments
|
✅ Snyk checks have passed. No issues have been found so far.
💻 Catch issues earlier using the plugins for VS Code, JetBrains IDEs, Visual Studio, and Eclipse. |
![github-advanced-security[bot]](https://avatars.githubusercontent.com/in/57789?s=60&v=4){kind=small}
![gemini-code-assist[bot]](https://avatars.githubusercontent.com/in/956858?s=60&v=4){kind=small}
There was a problem hiding this comment.
Code Review
This pull request updates the repository's base branch to main, removes several configuration files including SECURITY.md and .codesandbox/tasks.json, and updates dependencies and scripts in the extras packages. Feedback indicates that several specified dependency versions are invalid or not yet published, the syncpack hook in lefthook.yml is missing necessary directory patterns, and the removal of the security policy leaves the project without a vulnerability reporting process.
I am having trouble creating individual review comments. Click here to see my feedback.
extras/docs/package.json (15-27)
Several dependency versions specified here (e.g., next@^15.5.14, react@^19.2.3, eslint@^9.39.2, typescript@^5.9.3, and @types/node@^25.3.0) do not currently exist on the public npm registry. This will cause installation failures for users and CI environments. Please ensure you are using valid, published versions.
extras/web/package.json (15-27)
Similar to the docs package, these dependency versions (e.g., next@^15.5.14, eslint@^9.39.2) appear to be invalid or not yet published. Please verify and use correct versions to avoid build breakages.
lefthook.yml (10-14)
The syncpack hook glob is incomplete. It only monitors package.json in the root and packages/ directory, but the root package.json configuration for syncpack also includes extras/ and repo/. Changes to package.json files in those directories will not trigger this pre-commit check, potentially leading to out-of-sync dependencies across the monorepo.
syncpack:
glob:
- "package.json"
- "packages/**/package.json"
- "extras/**/package.json"
- "repo/**/package.json"
run: pnpm deps:lintSECURITY.md (1-20)
The SECURITY.md file is being removed without a replacement. It is highly recommended to maintain a security policy and a clear process for reporting vulnerabilities. If the previous content was incorrect (e.g., the contact email), it should be updated rather than deleted.
… through a stack trace' Co-authored-by: Copilot Autofix powered by AI <62310815+github-advanced-security[bot]@users.noreply.github.com> Signed-off-by: Dargon789 <64915515+Dargon789@users.noreply.github.com>
| return this.fetch( | ||
| this.url('RuntimeStatus'), | ||
| createHTTPRequest({}, headers, signal) | ||
| ).then((res) => { |
|
|
||
| export type ExplicitSessionParams = { | ||
| chainId: number | ||
| expiresIn: SessionDuration | ||
| permissions: Permission.Permission[] | ||
| nativeTokenSpending?: NativeTokenSpending | ||
| } |
3 participants
No description provided.