Security advisory: Title: qs vulnerable to Prototype Pollution Module name: qs Dependency: node-libcurl Path: node-libcurl>node-gyp>request>qs Severity: high Details: https://github.com/advisories/GHSA-hrpp-h998-j3pp

Security advisory: Title: tough-cookie Prototype Pollution vulnerability Module name: tough-cookie Dependency: node-libcurl Path: node-libcurl>node-gyp>request>tough-cookie Severity: moderate Details: https://github.com/advisories/GHSA-72xf-g2v4-qvf3

Security advisory: Title: qs vulnerable to Prototype Pollution Module name: qs Dependency: express Path: express>qs Severity: high Details: https://github.com/advisories/GHSA-hrpp-h998-j3pp

Security advisory: Title: send vulnerable to template injection that can lead to XSS Module name: send Dependency: express Path: express>send Severity: low Details: https://github.com/advisories/GHSA-m6fv-jmcg-4jfg

Security advisory: Title: serve-static vulnerable to template injection that can lead to XSS Module name: serve-static Dependency: express Path: express>serve-static Severity: low Details: https://github.com/advisories/GHSA-cm22-4g7w-348p

Security advisory: Title: Unpatched `path-to-regexp` ReDoS in 0.1.x Module name: path-to-regexp Dependency: express Path: express>path-to-regexp Severity: high Details: https://github.com/advisories/GHSA-rhx6-c78j-4q9w

Security advisory: Title: path-to-regexp outputs backtracking regular expressions Module name: path-to-regexp Dependency: express Path: express>path-to-regexp Severity: high Details: https://github.com/advisories/GHSA-9wv6-86v2-598j

Security advisory: Title: Command Injection in moment-timezone Module name: moment-timezone Dependency: moment-timezone Path: moment-timezone Severity: low Details: https://github.com/advisories/GHSA-56x4-j7p9-fcf9

Security advisory: Title: Cleartext Transmission of Sensitive Information in moment-timezone Module name: moment-timezone Dependency: moment-timezone Path: moment-timezone Severity: moderate Details: https://github.com/advisories/GHSA-v78c-4p63-2j6c

Security advisory: Title: Moment.js vulnerable to Inefficient Regular Expression Complexity Module name: moment Dependency: moment Path: moment Severity: high Details: https://github.com/advisories/GHSA-wc69-rhjr-hc9g

Your workflow is using a version of actions/cache that is scheduled for deprecation, actions/cache@88522ab9f39a2ea568f7027eddc7d8d8bc9d59c8. Please update your workflow to use either v3 or v4 of actions/cache to avoid interruptions. Learn more: https://github.blog/changelog/2024-12-05-notice-of-upcoming-releases-and-breaking-changes-for-github-actions/#actions-cache-v1-v2-and-actions-toolkit-cache-package-closing-down

Your workflow is using a version of actions/cache that is scheduled for deprecation, actions/cache@88522ab9f39a2ea568f7027eddc7d8d8bc9d59c8. Please update your workflow to use either v3 or v4 of actions/cache to avoid interruptions. Learn more: https://github.blog/changelog/2024-12-05-notice-of-upcoming-releases-and-breaking-changes-for-github-actions/#actions-cache-v1-v2-and-actions-toolkit-cache-package-closing-down

Your workflow is using a version of actions/cache that is scheduled for deprecation, actions/cache@88522ab9f39a2ea568f7027eddc7d8d8bc9d59c8. Please update your workflow to use either v3 or v4 of actions/cache to avoid interruptions. Learn more: https://github.blog/changelog/2024-12-05-notice-of-upcoming-releases-and-breaking-changes-for-github-actions/#actions-cache-v1-v2-and-actions-toolkit-cache-package-closing-down

Your docker password is not masked. See https://github.com/aws-actions/amazon-ecr-login#docker-credentials for more information.

config/webpack.config.js:31:22:Use an object spread instead of `Object.assign` eg: `{ ...foo }`.

script/pr-check.js:122:7:Use array destructuring.

script/pr-check.js:129:7:Unary operator '++' used.

script/pr-check.js:134:7:Unary operator '++' used.

script/run-unit-test.js:2:35:Unexpected use of file extension "js" for "./run-unit-test-help.js"

script/serve.js:2:25:`command-line-args` import should occur before import of `./utils`

src/platform/testing/e2e/cypress/support/commands/keyboard.js:8:33:Unary operator '++' used.

src/platform/testing/unit/axe-plugin.js:1:18:Unexpected unnamed function.

src/platform/testing/unit/axe-plugin.js:5:59:Unexpected unnamed function.

src/platform/testing/unit/renameKey.unit.spec.js:8:3:Cypress E2E tests must include at least one axeCheck call. Documentation for adding checks and understanding errors can be found here: https://depo-platform-documentation.scrollhelp.site/developer-docs/A11y-Testing.1935409178.html

Failed to restore: "/usr/bin/tar" failed with error: The process '/usr/bin/tar' failed with exit code 2

Failed to restore: "/usr/bin/tar" failed with error: The process '/usr/bin/tar' failed with exit code 2

Unexpected input(s) 'service_account_key', 'export_default_credentials', valid inputs are ['skip_install', 'version', 'project_id', 'install_components']