winget install --id Arnica.DepsGuard
About DepsGuard
DepsGuard hardens your package manager configurations against software supply chain attacks. It scans npm, pnpm, uv, and other package manager lockfiles and configs for security misconfigurations.
What's new in 0.1.38
What's Changed - docs(site): correct config-resolution footnote for effective-config behavior by @eran-medan in #51 - deps(actions): bump actions/upload-pages-artifact from 4.0.0 to 5.0.0 by @dependabot[bot] in #26 - deps(actions): bump pnpm/action-setup from 5.0.0 to 6.0.3 by @dependabot[bot] in #35 - deps(actions): bump actions/setup-node from 6.3.0 to 6.4.0 by @dependabot[bot] in #34 - deps(docs): bump tailwindcss from 4.2.2 to 4.3.0 in /docs by @dependabot[bot] in #43 - deps(actions): bump actions/upload-artifact from 7.0.0 to 7.0.1 by @dependabot[bot] in #32 - deps(actions): bump softprops/action-gh-release from 2.6.1 to 3.0.0 by @dependabot[bot] in #31 Full Changelog: v0.1.37...v0.1.38
Version history
| Version | Updated | Notes |
|---|---|---|
| 0.1.38 | Unknown | What's Changed - docs(site): correct config-resolution footnote for effective-config behavior by @eran-medan in #51 - deps(actions): bump actions/upload-pages-artifact from 4.0.0 to 5.0.0 by @dependabot[bot] in #26 - dep... |
| 0.1.36 | Unknown | What's Changed - test(pnpm): accept camelCase release-age key from pnpm >= 11.6 globalconfig by @eran-medan in #58 - fix(scan): exit non-zero when "scan" finds actionable results by @ramses0 in #55 New Contributors - @ra... |
| 0.1.35 | Unknown | What's Changed - fix(manager): honor all pnpm-11 config.yaml keys; stop recommending .npmrc on pnpm >= 11 by @eran-medan in #57 Full Changelog: v0.1.34...v0.1.35 |
| 0.1.34 | Unknown | What's Changed - Add SEO, agent discovery, and crawler configuration by @eran-medan in #29 - Replace external Crates.io cargo icon with local asset by @eran-medan in #39 - docs: CVE bypass guide and cooldowns.dev link by... |
| 0.1.33 | Unknown | What's Changed - fix(search): reject symlink entries before classifying config files by @latedeployment in #28 New Contributors - @latedeployment made their first contribution in #28 Full Changelog: v0.1.32...v0.1.33 |
| 0.1.32 | Unknown | What's Changed - fix(uv): update uv exclude-newer documentation and version logic by @eran-medan in #25 Full Changelog: v0.1.31...v0.1.32 |
| 0.1.31 | Unknown | What's Changed - refactor(manager): split monolithic manager.rs into per-manager modules by @eran-medan in #23 Full Changelog: v0.1.30...v0.1.31 |
| 0.1.30 | Unknown | What's Changed - Bug fixes by @eran-medan in #22 Full Changelog: v0.1.29...v0.1.30 |
| 0.1.29 | Unknown | What's Changed - multi-ecosystem entries were hidden by dedup and not being fixed by @tlavi00 in #20 New Contributors - @tlavi00 made their first contribution in #20 Full Changelog: v0.1.28...v0.1.29 |
| 0.1.28 | Unknown | What's Changed - ci: update release workflow to handle architecture-specific tarballs by @ofirshtrull in #21 Full Changelog: v0.1.27...v0.1.28 |
| 0.1.27 | Unknown | What's Changed - Update FAQ and other tweaks by @eran-medan in #18 Full Changelog: v0.1.26...v0.1.27 |
| 0.1.26 | Unknown | Full Changelog: v0.1.25...v0.1.26 |
| 0.1.19 | Unknown | No notes |