chore(lambda): bump the nx group in /lambdas with 3 updates

[dependabot]

Bumps the nx group in /lambdas with 3 updates: @nx/eslint, @nx/js and @nx/vite.

Updates @nx/eslint from 21.4.1 to 21.5.1

Release notes

Sourced from @​nx/eslint's releases.

21.5.1 (2025-09-08)

🚀 Features

• angular: support angular v20.2 (#32351)
• angular-rspack: do not rely on postinstall >20.2 (#32613)
• core: add incompatibleWith field for packageJsonUpdates (#32464)
• core: auto-retry lock files changed daemon msgs (#32489)
• core: add NX_PROJECT_ROOT environment variable to runtime cache inputs (#31428, #20949)
• graph: task graph support multiple targets (#32418)
• graph: unwrap RankDirPanel from experimental (#32490, #32482, #32481)
• js: add includeIgnoredAssetFiles option and per-asset includeIgnoredFiles (#31813)
• js: detect duplicate project references in @nx/js:typescript-sync (#32443)
• module-federation: align dynamic federation with latest from module federation and rspack (#32509, #32542)
• nx: use platform certificate trust store (#31999)
• nx-dev: link ukg article on homepage (c02d448b9f)
• nx-dev: configure rewrite to astro-docs when NEXT_PUBLIC_ASTRO_URL is set (#32424)
• nx-dev: nx.dev homepage feature illustrations and CTA (#32298)
• nx-dev: update homepage subtagline (2af5446fba)
• repo: add GitHub Actions workflow to validate PR titles (#32458)
• rspack: add support for converting webpack plugin configs #30292 (#32382, #30292)
• rspack: support passing templateParameters to HtmlRspackPlugin (#32553)
• tools: add repository update system for automated Nx migrations (#32124)
• vite: support vite 7 (#32422)
• webpack: migrate from deprecated url.parse() to WHATWG URL API (f768886ae7)

🩹 Fixes

• angular: set the tsConfig option when possible to aid with angular migrations (#32355, #32138)
• angular: do not update project configuration when not changes were made in migration (#32448)
• angular-rspack: do not error on server budget violation (#32445)
• core: improve Cursor editor detection and extension installation (#32374)
• core: ensure deterministic dummy task generation in task graphs (#32414)
• core: handle unsupported platforms in Cursor IDE install command (#32419)
• core: only prompt for NX Console installation in TTY environments (#32425)
• core: enhance validation for continuous task dependencies (#31786)
• core: retry current message when receiving NX_VERSION_CHANGED from daemon (#32417, #29446)
• core: use black for all fg elements when in light theme (#32415)
• core: fail fast when running commands in parallel (#32386, #28477)
• core: handle no daemon when stopping (#32455)
• core: create pnpm peer deps settings in the appropriate location when creating workspace (#32470)
• core: repair nx mcp in pnpm/yarn (#32452)
• core: allow additional properties in ProjectMetadata type (#32483)
• core: normalize root project root when merging project config results (#32517)
• core: detect devcontainer environment and skip Nx Console installation prompt if it exists (#32571)
• core: use more reasonable scroll speed on trackpads (#32603)
• core: exclude non-cacheable tasks from flaky detection (#32435)
• core: reduce CPU usage by adding 20ms interval to daemon process check (#32618)
• devkit: restore peer dep range to 2 majors (#32406, #31801)
• devkit: include UPDATE changes in findCreatedProjectFiles for generator callbacks (#31429, #29852)

... (truncated)

Commits

• c7d5406 docs(misc): update new subtagline
• a0c78e0 feat(angular): support angular v20.2 (#32351)
• See full diff in compare view

Maintainer changes

This version was pushed to npm by [GitHub Actions](https://www.npmjs.com/~GitHub Actions), a new releaser for @​nx/eslint since your current version.

Updates @nx/js from 21.4.1 to 21.5.1

Release notes

Sourced from @​nx/js's releases.

21.5.1 (2025-09-08)

🚀 Features

• angular: support angular v20.2 (#32351)
• angular-rspack: do not rely on postinstall >20.2 (#32613)
• core: add incompatibleWith field for packageJsonUpdates (#32464)
• core: auto-retry lock files changed daemon msgs (#32489)
• core: add NX_PROJECT_ROOT environment variable to runtime cache inputs (#31428, #20949)
• graph: task graph support multiple targets (#32418)
• graph: unwrap RankDirPanel from experimental (#32490, #32482, #32481)
• js: add includeIgnoredAssetFiles option and per-asset includeIgnoredFiles (#31813)
• js: detect duplicate project references in @nx/js:typescript-sync (#32443)
• module-federation: align dynamic federation with latest from module federation and rspack (#32509, #32542)
• nx: use platform certificate trust store (#31999)
• nx-dev: link ukg article on homepage (c02d448b9f)
• nx-dev: configure rewrite to astro-docs when NEXT_PUBLIC_ASTRO_URL is set (#32424)
• nx-dev: nx.dev homepage feature illustrations and CTA (#32298)
• nx-dev: update homepage subtagline (2af5446fba)
• repo: add GitHub Actions workflow to validate PR titles (#32458)
• rspack: add support for converting webpack plugin configs #30292 (#32382, #30292)
• rspack: support passing templateParameters to HtmlRspackPlugin (#32553)
• tools: add repository update system for automated Nx migrations (#32124)
• vite: support vite 7 (#32422)
• webpack: migrate from deprecated url.parse() to WHATWG URL API (f768886ae7)

🩹 Fixes

• angular: set the tsConfig option when possible to aid with angular migrations (#32355, #32138)
• angular: do not update project configuration when not changes were made in migration (#32448)
• angular-rspack: do not error on server budget violation (#32445)
• core: improve Cursor editor detection and extension installation (#32374)
• core: ensure deterministic dummy task generation in task graphs (#32414)
• core: handle unsupported platforms in Cursor IDE install command (#32419)
• core: only prompt for NX Console installation in TTY environments (#32425)
• core: enhance validation for continuous task dependencies (#31786)
• core: retry current message when receiving NX_VERSION_CHANGED from daemon (#32417, #29446)
• core: use black for all fg elements when in light theme (#32415)
• core: fail fast when running commands in parallel (#32386, #28477)
• core: handle no daemon when stopping (#32455)
• core: create pnpm peer deps settings in the appropriate location when creating workspace (#32470)
• core: repair nx mcp in pnpm/yarn (#32452)
• core: allow additional properties in ProjectMetadata type (#32483)
• core: normalize root project root when merging project config results (#32517)
• core: detect devcontainer environment and skip Nx Console installation prompt if it exists (#32571)
• core: use more reasonable scroll speed on trackpads (#32603)
• core: exclude non-cacheable tasks from flaky detection (#32435)
• core: reduce CPU usage by adding 20ms interval to daemon process check (#32618)
• devkit: restore peer dep range to 2 majors (#32406, #31801)
• devkit: include UPDATE changes in findCreatedProjectFiles for generator callbacks (#31429, #29852)

... (truncated)

Commits

• ec1f1a4 fix(js): store stale references correctly in typescript-sync generator (#32...
• c7d5406 docs(misc): update new subtagline
• ec6b707 fix(js): use a unique typescript custom condition name for the workspace (#32...
• a0c78e0 feat(angular): support angular v20.2 (#32351)
• 86ebc84 feat(js): detect duplicate project references in @nx/js:typescript-sync (#3...
• 0494d09 fix(misc): check for packages existence to detect pnpm workspaces setup (#3...
• fc8f9a9 feat(js): add includeIgnoredAssetFiles option and per-asset includeIgnoredFil...
• 2788d91 fix(js): do not infer the project type in the @nx/js/typescript plugin (#32...
• 4bf937e fix(js): improve @nx/js/typescript plugin check for buildable libraries (#3...
• 6ce1061 fix(misc): update @​types/node to v20.19.9 to support fetch API (#32092)
• Additional commits viewable in compare view

Maintainer changes

This version was pushed to npm by [GitHub Actions](https://www.npmjs.com/~GitHub Actions), a new releaser for @​nx/js since your current version.

Updates @nx/vite from 21.4.1 to 21.5.1

Release notes

Sourced from @​nx/vite's releases.

21.5.1 (2025-09-08)

🚀 Features

• angular: support angular v20.2 (#32351)
• angular-rspack: do not rely on postinstall >20.2 (#32613)
• core: add incompatibleWith field for packageJsonUpdates (#32464)
• core: auto-retry lock files changed daemon msgs (#32489)
• core: add NX_PROJECT_ROOT environment variable to runtime cache inputs (#31428, #20949)
• graph: task graph support multiple targets (#32418)
• graph: unwrap RankDirPanel from experimental (#32490, #32482, #32481)
• js: add includeIgnoredAssetFiles option and per-asset includeIgnoredFiles (#31813)
• js: detect duplicate project references in @nx/js:typescript-sync (#32443)
• module-federation: align dynamic federation with latest from module federation and rspack (#32509, #32542)
• nx: use platform certificate trust store (#31999)
• nx-dev: link ukg article on homepage (c02d448b9f)
• nx-dev: configure rewrite to astro-docs when NEXT_PUBLIC_ASTRO_URL is set (#32424)
• nx-dev: nx.dev homepage feature illustrations and CTA (#32298)
• nx-dev: update homepage subtagline (2af5446fba)
• repo: add GitHub Actions workflow to validate PR titles (#32458)
• rspack: add support for converting webpack plugin configs #30292 (#32382, #30292)
• rspack: support passing templateParameters to HtmlRspackPlugin (#32553)
• tools: add repository update system for automated Nx migrations (#32124)
• vite: support vite 7 (#32422)
• webpack: migrate from deprecated url.parse() to WHATWG URL API (f768886ae7)

🩹 Fixes

• angular: set the tsConfig option when possible to aid with angular migrations (#32355, #32138)
• angular: do not update project configuration when not changes were made in migration (#32448)
• angular-rspack: do not error on server budget violation (#32445)
• core: improve Cursor editor detection and extension installation (#32374)
• core: ensure deterministic dummy task generation in task graphs (#32414)
• core: handle unsupported platforms in Cursor IDE install command (#32419)
• core: only prompt for NX Console installation in TTY environments (#32425)
• core: enhance validation for continuous task dependencies (#31786)
• core: retry current message when receiving NX_VERSION_CHANGED from daemon (#32417, #29446)
• core: use black for all fg elements when in light theme (#32415)
• core: fail fast when running commands in parallel (#32386, #28477)
• core: handle no daemon when stopping (#32455)
• core: create pnpm peer deps settings in the appropriate location when creating workspace (#32470)
• core: repair nx mcp in pnpm/yarn (#32452)
• core: allow additional properties in ProjectMetadata type (#32483)
• core: normalize root project root when merging project config results (#32517)
• core: detect devcontainer environment and skip Nx Console installation prompt if it exists (#32571)
• core: use more reasonable scroll speed on trackpads (#32603)
• core: exclude non-cacheable tasks from flaky detection (#32435)
• core: reduce CPU usage by adding 20ms interval to daemon process check (#32618)
• devkit: restore peer dep range to 2 majors (#32406, #31801)
• devkit: include UPDATE changes in findCreatedProjectFiles for generator callbacks (#31429, #29852)

... (truncated)

Commits

• c7d5406 docs(misc): update new subtagline
• ec6b707 fix(js): use a unique typescript custom condition name for the workspace (#32...
• 1b3a533 feat(core): add incompatibleWith field for packageJsonUpdates (#32464)
• d8b98e3 feat(vite): support vite 7 (#32422)
• See full diff in compare view

Maintainer changes

This version was pushed to npm by [GitHub Actions](https://www.npmjs.com/~GitHub Actions), a new releaser for @​nx/vite since your current version.

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

---

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

• @dependabot rebase will rebase this PR
• @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
• @dependabot merge will merge this PR after your CI passes on it
• @dependabot squash and merge will squash and merge this PR after your CI passes on it
• @dependabot cancel merge will cancel a previously requested merge and block automerging
• @dependabot reopen will reopen this PR if it is closed
• @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
• @dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
• @dependabot ignore <dependency name> major version will close this group update PR and stop Dependabot creating any more for the specific dependency's major version (unless you unignore this specific dependency's major version or upgrade to it yourself)
• @dependabot ignore <dependency name> minor version will close this group update PR and stop Dependabot creating any more for the specific dependency's minor version (unless you unignore this specific dependency's minor version or upgrade to it yourself)
• @dependabot ignore <dependency name> will close this group update PR and stop Dependabot creating any more for the specific dependency (unless you unignore this specific dependency or upgrade to it yourself)
• @dependabot unignore <dependency name> will remove all of the ignore conditions of the specified dependency
• @dependabot unignore <dependency name> <ignore condition> will remove the ignore condition of the specified dependency and ignore conditions

[github-actions]

Dependency Review

✅ No vulnerabilities or license issues or OpenSSF Scorecard issues found.

OpenSSF Scorecard

Scorecard details

Package	Version	Score	Details
npm/@nx/eslint	21.5.1	🟢 6.1	Details Check Score Reason Code-Review 🟢 10 all changesets reviewed CII-Best-Practices ⚠️ 0 no effort to earn an OpenSSF best practices badge detected Maintained 🟢 10 30 commit(s) and 7 issue activity found in the last 90 days -- score normalized to 10 Security-Policy 🟢 10 security policy file detected Packaging ⚠️ -1 packaging workflow not detected Dangerous-Workflow 🟢 10 no dangerous workflow patterns detected Token-Permissions ⚠️ 0 detected GitHub workflow tokens with excessive permissions License 🟢 10 license file detected Branch-Protection 🟢 8 branch protection is not maximal on development and all release branches Signed-Releases ⚠️ -1 no releases found SAST 🟢 10 SAST tool is run on all commits Fuzzing ⚠️ 0 project is not fuzzed Binary-Artifacts 🟢 7 binaries present in source code Pinned-Dependencies ⚠️ 0 dependency not pinned by hash detected -- score normalized to 0 Vulnerabilities ⚠️ 0 99 existing vulnerabilities detected
npm/@nx/js	^21.5.1	🟢 6.1	Details Check Score Reason Code-Review 🟢 10 all changesets reviewed CII-Best-Practices ⚠️ 0 no effort to earn an OpenSSF best practices badge detected Maintained 🟢 10 30 commit(s) and 7 issue activity found in the last 90 days -- score normalized to 10 Security-Policy 🟢 10 security policy file detected Packaging ⚠️ -1 packaging workflow not detected Dangerous-Workflow 🟢 10 no dangerous workflow patterns detected Token-Permissions ⚠️ 0 detected GitHub workflow tokens with excessive permissions License 🟢 10 license file detected Branch-Protection 🟢 8 branch protection is not maximal on development and all release branches Signed-Releases ⚠️ -1 no releases found SAST 🟢 10 SAST tool is run on all commits Fuzzing ⚠️ 0 project is not fuzzed Binary-Artifacts 🟢 7 binaries present in source code Pinned-Dependencies ⚠️ 0 dependency not pinned by hash detected -- score normalized to 0 Vulnerabilities ⚠️ 0 99 existing vulnerabilities detected
npm/@nx/vite	^21.5.1	🟢 6.1	Details Check Score Reason Code-Review 🟢 10 all changesets reviewed CII-Best-Practices ⚠️ 0 no effort to earn an OpenSSF best practices badge detected Maintained 🟢 10 30 commit(s) and 7 issue activity found in the last 90 days -- score normalized to 10 Security-Policy 🟢 10 security policy file detected Packaging ⚠️ -1 packaging workflow not detected Dangerous-Workflow 🟢 10 no dangerous workflow patterns detected Token-Permissions ⚠️ 0 detected GitHub workflow tokens with excessive permissions License 🟢 10 license file detected Branch-Protection 🟢 8 branch protection is not maximal on development and all release branches Signed-Releases ⚠️ -1 no releases found SAST 🟢 10 SAST tool is run on all commits Fuzzing ⚠️ 0 project is not fuzzed Binary-Artifacts 🟢 7 binaries present in source code Pinned-Dependencies ⚠️ 0 dependency not pinned by hash detected -- score normalized to 0 Vulnerabilities ⚠️ 0 99 existing vulnerabilities detected
npm/@nx/devkit	21.5.1	🟢 6.1	Details Check Score Reason Code-Review 🟢 10 all changesets reviewed CII-Best-Practices ⚠️ 0 no effort to earn an OpenSSF best practices badge detected Maintained 🟢 10 30 commit(s) and 7 issue activity found in the last 90 days -- score normalized to 10 Security-Policy 🟢 10 security policy file detected Packaging ⚠️ -1 packaging workflow not detected Dangerous-Workflow 🟢 10 no dangerous workflow patterns detected Token-Permissions ⚠️ 0 detected GitHub workflow tokens with excessive permissions License 🟢 10 license file detected Branch-Protection 🟢 8 branch protection is not maximal on development and all release branches Signed-Releases ⚠️ -1 no releases found SAST 🟢 10 SAST tool is run on all commits Fuzzing ⚠️ 0 project is not fuzzed Binary-Artifacts 🟢 7 binaries present in source code Pinned-Dependencies ⚠️ 0 dependency not pinned by hash detected -- score normalized to 0 Vulnerabilities ⚠️ 0 99 existing vulnerabilities detected
npm/@nx/eslint	21.5.1	🟢 6.1	Details Check Score Reason Code-Review 🟢 10 all changesets reviewed CII-Best-Practices ⚠️ 0 no effort to earn an OpenSSF best practices badge detected Maintained 🟢 10 30 commit(s) and 7 issue activity found in the last 90 days -- score normalized to 10 Security-Policy 🟢 10 security policy file detected Packaging ⚠️ -1 packaging workflow not detected Dangerous-Workflow 🟢 10 no dangerous workflow patterns detected Token-Permissions ⚠️ 0 detected GitHub workflow tokens with excessive permissions License 🟢 10 license file detected Branch-Protection 🟢 8 branch protection is not maximal on development and all release branches Signed-Releases ⚠️ -1 no releases found SAST 🟢 10 SAST tool is run on all commits Fuzzing ⚠️ 0 project is not fuzzed Binary-Artifacts 🟢 7 binaries present in source code Pinned-Dependencies ⚠️ 0 dependency not pinned by hash detected -- score normalized to 0 Vulnerabilities ⚠️ 0 99 existing vulnerabilities detected
npm/@nx/js	21.5.1	🟢 6.1	Details Check Score Reason Code-Review 🟢 10 all changesets reviewed CII-Best-Practices ⚠️ 0 no effort to earn an OpenSSF best practices badge detected Maintained 🟢 10 30 commit(s) and 7 issue activity found in the last 90 days -- score normalized to 10 Security-Policy 🟢 10 security policy file detected Packaging ⚠️ -1 packaging workflow not detected Dangerous-Workflow 🟢 10 no dangerous workflow patterns detected Token-Permissions ⚠️ 0 detected GitHub workflow tokens with excessive permissions License 🟢 10 license file detected Branch-Protection 🟢 8 branch protection is not maximal on development and all release branches Signed-Releases ⚠️ -1 no releases found SAST 🟢 10 SAST tool is run on all commits Fuzzing ⚠️ 0 project is not fuzzed Binary-Artifacts 🟢 7 binaries present in source code Pinned-Dependencies ⚠️ 0 dependency not pinned by hash detected -- score normalized to 0 Vulnerabilities ⚠️ 0 99 existing vulnerabilities detected
npm/@nx/nx-darwin-arm64	21.5.1	🟢 6.1	Details Check Score Reason Code-Review 🟢 10 all changesets reviewed CII-Best-Practices ⚠️ 0 no effort to earn an OpenSSF best practices badge detected Maintained 🟢 10 30 commit(s) and 7 issue activity found in the last 90 days -- score normalized to 10 Security-Policy 🟢 10 security policy file detected Packaging ⚠️ -1 packaging workflow not detected Dangerous-Workflow 🟢 10 no dangerous workflow patterns detected Token-Permissions ⚠️ 0 detected GitHub workflow tokens with excessive permissions License 🟢 10 license file detected Branch-Protection 🟢 8 branch protection is not maximal on development and all release branches Signed-Releases ⚠️ -1 no releases found SAST 🟢 10 SAST tool is run on all commits Fuzzing ⚠️ 0 project is not fuzzed Binary-Artifacts 🟢 7 binaries present in source code Pinned-Dependencies ⚠️ 0 dependency not pinned by hash detected -- score normalized to 0 Vulnerabilities ⚠️ 0 99 existing vulnerabilities detected
npm/@nx/nx-darwin-x64	21.5.1	🟢 6.1	Details Check Score Reason Code-Review 🟢 10 all changesets reviewed CII-Best-Practices ⚠️ 0 no effort to earn an OpenSSF best practices badge detected Maintained 🟢 10 30 commit(s) and 7 issue activity found in the last 90 days -- score normalized to 10 Security-Policy 🟢 10 security policy file detected Packaging ⚠️ -1 packaging workflow not detected Dangerous-Workflow 🟢 10 no dangerous workflow patterns detected Token-Permissions ⚠️ 0 detected GitHub workflow tokens with excessive permissions License 🟢 10 license file detected Branch-Protection 🟢 8 branch protection is not maximal on development and all release branches Signed-Releases ⚠️ -1 no releases found SAST 🟢 10 SAST tool is run on all commits Fuzzing ⚠️ 0 project is not fuzzed Binary-Artifacts 🟢 7 binaries present in source code Pinned-Dependencies ⚠️ 0 dependency not pinned by hash detected -- score normalized to 0 Vulnerabilities ⚠️ 0 99 existing vulnerabilities detected
npm/@nx/nx-freebsd-x64	21.5.1	🟢 6.1	Details Check Score Reason Code-Review 🟢 10 all changesets reviewed CII-Best-Practices ⚠️ 0 no effort to earn an OpenSSF best practices badge detected Maintained 🟢 10 30 commit(s) and 7 issue activity found in the last 90 days -- score normalized to 10 Security-Policy 🟢 10 security policy file detected Packaging ⚠️ -1 packaging workflow not detected Dangerous-Workflow 🟢 10 no dangerous workflow patterns detected Token-Permissions ⚠️ 0 detected GitHub workflow tokens with excessive permissions License 🟢 10 license file detected Branch-Protection 🟢 8 branch protection is not maximal on development and all release branches Signed-Releases ⚠️ -1 no releases found SAST 🟢 10 SAST tool is run on all commits Fuzzing ⚠️ 0 project is not fuzzed Binary-Artifacts 🟢 7 binaries present in source code Pinned-Dependencies ⚠️ 0 dependency not pinned by hash detected -- score normalized to 0 Vulnerabilities ⚠️ 0 99 existing vulnerabilities detected
npm/@nx/nx-linux-arm-gnueabihf	21.5.1	🟢 6.1	Details Check Score Reason Code-Review 🟢 10 all changesets reviewed CII-Best-Practices ⚠️ 0 no effort to earn an OpenSSF best practices badge detected Maintained 🟢 10 30 commit(s) and 7 issue activity found in the last 90 days -- score normalized to 10 Security-Policy 🟢 10 security policy file detected Packaging ⚠️ -1 packaging workflow not detected Dangerous-Workflow 🟢 10 no dangerous workflow patterns detected Token-Permissions ⚠️ 0 detected GitHub workflow tokens with excessive permissions License 🟢 10 license file detected Branch-Protection 🟢 8 branch protection is not maximal on development and all release branches Signed-Releases ⚠️ -1 no releases found SAST 🟢 10 SAST tool is run on all commits Fuzzing ⚠️ 0 project is not fuzzed Binary-Artifacts 🟢 7 binaries present in source code Pinned-Dependencies ⚠️ 0 dependency not pinned by hash detected -- score normalized to 0 Vulnerabilities ⚠️ 0 99 existing vulnerabilities detected
npm/@nx/nx-linux-arm64-gnu	21.5.1	🟢 6.1	Details Check Score Reason Code-Review 🟢 10 all changesets reviewed CII-Best-Practices ⚠️ 0 no effort to earn an OpenSSF best practices badge detected Maintained 🟢 10 30 commit(s) and 7 issue activity found in the last 90 days -- score normalized to 10 Security-Policy 🟢 10 security policy file detected Packaging ⚠️ -1 packaging workflow not detected Dangerous-Workflow 🟢 10 no dangerous workflow patterns detected Token-Permissions ⚠️ 0 detected GitHub workflow tokens with excessive permissions License 🟢 10 license file detected Branch-Protection 🟢 8 branch protection is not maximal on development and all release branches Signed-Releases ⚠️ -1 no releases found SAST 🟢 10 SAST tool is run on all commits Fuzzing ⚠️ 0 project is not fuzzed Binary-Artifacts 🟢 7 binaries present in source code Pinned-Dependencies ⚠️ 0 dependency not pinned by hash detected -- score normalized to 0 Vulnerabilities ⚠️ 0 99 existing vulnerabilities detected
npm/@nx/nx-linux-arm64-musl	21.5.1	🟢 6.1	Details Check Score Reason Code-Review 🟢 10 all changesets reviewed CII-Best-Practices ⚠️ 0 no effort to earn an OpenSSF best practices badge detected Maintained 🟢 10 30 commit(s) and 7 issue activity found in the last 90 days -- score normalized to 10 Security-Policy 🟢 10 security policy file detected Packaging ⚠️ -1 packaging workflow not detected Dangerous-Workflow 🟢 10 no dangerous workflow patterns detected Token-Permissions ⚠️ 0 detected GitHub workflow tokens with excessive permissions License 🟢 10 license file detected Branch-Protection 🟢 8 branch protection is not maximal on development and all release branches Signed-Releases ⚠️ -1 no releases found SAST 🟢 10 SAST tool is run on all commits Fuzzing ⚠️ 0 project is not fuzzed Binary-Artifacts 🟢 7 binaries present in source code Pinned-Dependencies ⚠️ 0 dependency not pinned by hash detected -- score normalized to 0 Vulnerabilities ⚠️ 0 99 existing vulnerabilities detected
npm/@nx/nx-linux-x64-gnu	21.5.1	🟢 6.1	Details Check Score Reason Code-Review 🟢 10 all changesets reviewed CII-Best-Practices ⚠️ 0 no effort to earn an OpenSSF best practices badge detected Maintained 🟢 10 30 commit(s) and 7 issue activity found in the last 90 days -- score normalized to 10 Security-Policy 🟢 10 security policy file detected Packaging ⚠️ -1 packaging workflow not detected Dangerous-Workflow 🟢 10 no dangerous workflow patterns detected Token-Permissions ⚠️ 0 detected GitHub workflow tokens with excessive permissions License 🟢 10 license file detected Branch-Protection 🟢 8 branch protection is not maximal on development and all release branches Signed-Releases ⚠️ -1 no releases found SAST 🟢 10 SAST tool is run on all commits Fuzzing ⚠️ 0 project is not fuzzed Binary-Artifacts 🟢 7 binaries present in source code Pinned-Dependencies ⚠️ 0 dependency not pinned by hash detected -- score normalized to 0 Vulnerabilities ⚠️ 0 99 existing vulnerabilities detected
npm/@nx/nx-linux-x64-musl	21.5.1	🟢 6.1	Details Check Score Reason Code-Review 🟢 10 all changesets reviewed CII-Best-Practices ⚠️ 0 no effort to earn an OpenSSF best practices badge detected Maintained 🟢 10 30 commit(s) and 7 issue activity found in the last 90 days -- score normalized to 10 Security-Policy 🟢 10 security policy file detected Packaging ⚠️ -1 packaging workflow not detected Dangerous-Workflow 🟢 10 no dangerous workflow patterns detected Token-Permissions ⚠️ 0 detected GitHub workflow tokens with excessive permissions License 🟢 10 license file detected Branch-Protection 🟢 8 branch protection is not maximal on development and all release branches Signed-Releases ⚠️ -1 no releases found SAST 🟢 10 SAST tool is run on all commits Fuzzing ⚠️ 0 project is not fuzzed Binary-Artifacts 🟢 7 binaries present in source code Pinned-Dependencies ⚠️ 0 dependency not pinned by hash detected -- score normalized to 0 Vulnerabilities ⚠️ 0 99 existing vulnerabilities detected
npm/@nx/nx-win32-arm64-msvc	21.5.1	🟢 6.1	Details Check Score Reason Code-Review 🟢 10 all changesets reviewed CII-Best-Practices ⚠️ 0 no effort to earn an OpenSSF best practices badge detected Maintained 🟢 10 30 commit(s) and 7 issue activity found in the last 90 days -- score normalized to 10 Security-Policy 🟢 10 security policy file detected Packaging ⚠️ -1 packaging workflow not detected Dangerous-Workflow 🟢 10 no dangerous workflow patterns detected Token-Permissions ⚠️ 0 detected GitHub workflow tokens with excessive permissions License 🟢 10 license file detected Branch-Protection 🟢 8 branch protection is not maximal on development and all release branches Signed-Releases ⚠️ -1 no releases found SAST 🟢 10 SAST tool is run on all commits Fuzzing ⚠️ 0 project is not fuzzed Binary-Artifacts 🟢 7 binaries present in source code Pinned-Dependencies ⚠️ 0 dependency not pinned by hash detected -- score normalized to 0 Vulnerabilities ⚠️ 0 99 existing vulnerabilities detected
npm/@nx/nx-win32-x64-msvc	21.5.1	🟢 6.1	Details Check Score Reason Code-Review 🟢 10 all changesets reviewed CII-Best-Practices ⚠️ 0 no effort to earn an OpenSSF best practices badge detected Maintained 🟢 10 30 commit(s) and 7 issue activity found in the last 90 days -- score normalized to 10 Security-Policy 🟢 10 security policy file detected Packaging ⚠️ -1 packaging workflow not detected Dangerous-Workflow 🟢 10 no dangerous workflow patterns detected Token-Permissions ⚠️ 0 detected GitHub workflow tokens with excessive permissions License 🟢 10 license file detected Branch-Protection 🟢 8 branch protection is not maximal on development and all release branches Signed-Releases ⚠️ -1 no releases found SAST 🟢 10 SAST tool is run on all commits Fuzzing ⚠️ 0 project is not fuzzed Binary-Artifacts 🟢 7 binaries present in source code Pinned-Dependencies ⚠️ 0 dependency not pinned by hash detected -- score normalized to 0 Vulnerabilities ⚠️ 0 99 existing vulnerabilities detected
npm/@nx/vite	21.5.1	🟢 6.1	Details Check Score Reason Code-Review 🟢 10 all changesets reviewed CII-Best-Practices ⚠️ 0 no effort to earn an OpenSSF best practices badge detected Maintained 🟢 10 30 commit(s) and 7 issue activity found in the last 90 days -- score normalized to 10 Security-Policy 🟢 10 security policy file detected Packaging ⚠️ -1 packaging workflow not detected Dangerous-Workflow 🟢 10 no dangerous workflow patterns detected Token-Permissions ⚠️ 0 detected GitHub workflow tokens with excessive permissions License 🟢 10 license file detected Branch-Protection 🟢 8 branch protection is not maximal on development and all release branches Signed-Releases ⚠️ -1 no releases found SAST 🟢 10 SAST tool is run on all commits Fuzzing ⚠️ 0 project is not fuzzed Binary-Artifacts 🟢 7 binaries present in source code Pinned-Dependencies ⚠️ 0 dependency not pinned by hash detected -- score normalized to 0 Vulnerabilities ⚠️ 0 99 existing vulnerabilities detected
npm/@nx/workspace	21.5.1	🟢 6.1	Details Check Score Reason Code-Review 🟢 10 all changesets reviewed CII-Best-Practices ⚠️ 0 no effort to earn an OpenSSF best practices badge detected Maintained 🟢 10 30 commit(s) and 7 issue activity found in the last 90 days -- score normalized to 10 Security-Policy 🟢 10 security policy file detected Packaging ⚠️ -1 packaging workflow not detected Dangerous-Workflow 🟢 10 no dangerous workflow patterns detected Token-Permissions ⚠️ 0 detected GitHub workflow tokens with excessive permissions License 🟢 10 license file detected Branch-Protection 🟢 8 branch protection is not maximal on development and all release branches Signed-Releases ⚠️ -1 no releases found SAST 🟢 10 SAST tool is run on all commits Fuzzing ⚠️ 0 project is not fuzzed Binary-Artifacts 🟢 7 binaries present in source code Pinned-Dependencies ⚠️ 0 dependency not pinned by hash detected -- score normalized to 0 Vulnerabilities ⚠️ 0 99 existing vulnerabilities detected
npm/nx	21.5.1	🟢 6.1	Details Check Score Reason Code-Review 🟢 10 all changesets reviewed CII-Best-Practices ⚠️ 0 no effort to earn an OpenSSF best practices badge detected Maintained 🟢 10 30 commit(s) and 7 issue activity found in the last 90 days -- score normalized to 10 Security-Policy 🟢 10 security policy file detected Packaging ⚠️ -1 packaging workflow not detected Dangerous-Workflow 🟢 10 no dangerous workflow patterns detected Token-Permissions ⚠️ 0 detected GitHub workflow tokens with excessive permissions License 🟢 10 license file detected Branch-Protection 🟢 8 branch protection is not maximal on development and all release branches Signed-Releases ⚠️ -1 no releases found SAST 🟢 10 SAST tool is run on all commits Fuzzing ⚠️ 0 project is not fuzzed Binary-Artifacts 🟢 7 binaries present in source code Pinned-Dependencies ⚠️ 0 dependency not pinned by hash detected -- score normalized to 0 Vulnerabilities ⚠️ 0 99 existing vulnerabilities detected
npm/typescript	5.9.2	🟢 8.6	Details Check Score Reason Maintained 🟢 10 30 commit(s) and 2 issue activity found in the last 90 days -- score normalized to 10 Code-Review 🟢 10 all changesets reviewed Security-Policy 🟢 10 security policy file detected Packaging ⚠️ -1 packaging workflow not detected Dependency-Update-Tool 🟢 10 update tool detected Token-Permissions 🟢 9 detected GitHub workflow tokens with excessive permissions Dangerous-Workflow 🟢 10 no dangerous workflow patterns detected License 🟢 10 license file detected CII-Best-Practices ⚠️ 0 no effort to earn an OpenSSF best practices badge detected Binary-Artifacts 🟢 10 no binaries found in the repo Pinned-Dependencies 🟢 6 dependency not pinned by hash detected -- score normalized to 6 Branch-Protection 🟢 8 branch protection is not maximal on development and all release branches Signed-Releases ⚠️ 0 Project has not signed or included provenance with any releases. Vulnerabilities 🟢 10 0 existing vulnerabilities detected SAST 🟢 10 SAST tool is run on all commits Fuzzing 🟢 10 project is fuzzed CI-Tests 🟢 10 30 out of 30 merged PRs checked by a CI test -- score normalized to 10 Contributors 🟢 10 project has 34 contributing companies or organizations

Scanned Files

• lambdas/package.json
• lambdas/yarn.lock