mirror of
https://github.com/KeygraphHQ/shannon.git
synced 2026-04-01 10:20:53 +02:00
147bc3f5f4
* fix: patch smol-toml and tsdown vulnerabilities Update smol-toml 1.6.0→1.6.1 (DoS via recursive comment parsing) and tsdown 0.21.2→0.21.5 (picomatch ReDoS + method injection). * fix: pin all unpinned dependency versions in Dockerfile Pins subfinder v2.13.0, WhatWeb v0.6.3 (switched from git clone to release tarball), schemathesis 4.13.0, addressable 2.8.9, claude-code 2.1.84, and playwright-cli 0.1.1 for reproducible builds. * fix: pin GitHub Actions to commit SHAs for supply chain security * fix: pin GitHub Actions to commit SHAs in beta and rollback workflows
51 lines
1000 B
JSON
51 lines
1000 B
JSON
{
|
|
"name": "@keygraph/shannon",
|
|
"version": "0.0.0",
|
|
"description": "Shannon - Autonomous white-box AI pentester for web applications and APIs by Keygraph",
|
|
"type": "module",
|
|
"main": "dist/index.mjs",
|
|
"bin": {
|
|
"shannon": "dist/index.mjs"
|
|
},
|
|
"files": [
|
|
"dist",
|
|
"infra"
|
|
],
|
|
"scripts": {
|
|
"build": "tsdown",
|
|
"check": "tsc --noEmit",
|
|
"clean": "rm -rf dist"
|
|
},
|
|
"dependencies": {
|
|
"@clack/prompts": "^1.1.0",
|
|
"chokidar": "^5.0.0",
|
|
"dotenv": "^17.3.1",
|
|
"smol-toml": "^1.6.1"
|
|
},
|
|
"keywords": [
|
|
"security",
|
|
"pentest",
|
|
"penetration-testing",
|
|
"vulnerability-assessment",
|
|
"ai",
|
|
"white-box",
|
|
"owasp",
|
|
"exploitation",
|
|
"appsec",
|
|
"keygraph"
|
|
],
|
|
"author": "",
|
|
"license": "AGPL-3.0-only",
|
|
"repository": {
|
|
"type": "git",
|
|
"url": "git+https://github.com/KeygraphHQ/shannon.git",
|
|
"directory": "apps/cli"
|
|
},
|
|
"engines": {
|
|
"node": ">=18"
|
|
},
|
|
"devDependencies": {
|
|
"tsdown": "^0.21.5"
|
|
}
|
|
}
|