From 021d2f68abeb273d61dde7d9c9fcac873049515e Mon Sep 17 00:00:00 2001 From: virtualian Date: Mon, 8 Dec 2025 22:14:08 +0000 Subject: [PATCH] Reset version to 1.0.0 for initial public release --- README.md | 2 +- VERSION | 4 ++-- scripts/npm-audit-lib.sh | 2 +- 3 files changed, 4 insertions(+), 4 deletions(-) diff --git a/README.md b/README.md index 941639b..1cb5344 100644 --- a/README.md +++ b/README.md @@ -2,7 +2,7 @@ [![CI](https://github.com/virtualian/npm-scanner/actions/workflows/ci.yml/badge.svg)](https://github.com/virtualian/npm-scanner/actions/workflows/ci.yml) [![License: ISC](https://img.shields.io/badge/license-ISC-blue.svg)](LICENSE) -[![Version](https://img.shields.io/badge/version-1.1.0-green.svg)](VERSION) +[![Version](https://img.shields.io/badge/version-1.0.0-green.svg)](VERSION) Security auditing toolkit for detecting npm supply chain attacks. Detects threats that `npm audit` misses—URL dependencies (PhantomRaven-style attacks), malicious lifecycle scripts, typosquatting, and suspicious package metadata. diff --git a/VERSION b/VERSION index eea8faf..d89e7ed 100644 --- a/VERSION +++ b/VERSION @@ -1,2 +1,2 @@ -1.1.0 -2025-12-06 +1.0.0 +2025-12-08 diff --git a/scripts/npm-audit-lib.sh b/scripts/npm-audit-lib.sh index ce5c00b..f7ddd61 100755 --- a/scripts/npm-audit-lib.sh +++ b/scripts/npm-audit-lib.sh @@ -49,7 +49,7 @@ export TYPOSQUATTING_TARGETS=( # Original "express" "react" "vue" "angular" "lodash" "axios" "webpack" "babel" "eslint" "typescript" "prettier" "jest" "mocha" - # Added in v1.1.0 + # Extended targets "chalk" "moment" "uuid" "commander" "debug" "request" "async" "bluebird" "underscore" "q" "colors" "minimist" "yargs" "glob" "rimraf"