Morph MORPH
SIGN IN SIGN UP
dhruvhead / asar UNCLAIMED
0 0 21 TypeScript

COMMITS

main
May 18, 2026
D
build(deps): bump brace-expansion from 5.0.5 to 5.0.6 (#445)
dependabot[bot] committed
0620b59
May 11, 2026
D
build(deps): bump electron/github-app-auth-action from 2.0.0 to 2.1.0 (#439)
dependabot[bot] committed
ea1c6c0
May 7, 2026
D
build: restore packageManager and resolutions fields in package.json (#444)
David Sanders committed
8388dbd
May 1, 2026
D
build(deps): bump dsanders11/project-actions from 2.0.0 to 2.0.1 (#440)
dependabot[bot] committed
80fcd33
D
build(deps): bump actions/setup-node from 6.3.0 to 6.4.0 (#441)
dependabot[bot] committed
cf3c463
D
build: run yarn dedupe (#442)
David Sanders committed
be9e62f
April 30, 2026
D
build(dev-deps): bump vitest to 4.1.5 (#438)
David Sanders committed
4d9d9eb
April 22, 2026
S
fix: replace commander with native Node.js parseArgs (#416)
Samuel Attard committed
42b25d0
April 20, 2026
E
build: TS6 + oxc.rs (#437)
Erick Zhao committed
53b3bd3
April 13, 2026
D
build(deps): bump vite from 7.1.11 to 7.3.2 (#435)
dependabot[bot] committed
f7e06b4
April 9, 2026
D
build(dev-deps): replace fsevents with forked version (#434)
David Sanders committed
6f3a07e
April 4, 2026
S
chore: resolve dependabot security alerts (#433)
Samuel Attard committed
cc9b53b
D
build(deps): bump brace-expansion from 5.0.2 to 5.0.5 (#432)
dependabot[bot] committed
20d821f
April 3, 2026
D
build(deps-dev): bump electron from 35.7.5 to 39.8.4 (#431)
dependabot[bot] committed
570e89d
S
fix: add DoS validation for asar archive headers and file entries (#419)
Samuel Attard committed
51cd188
S
fix: improve symlink validation to prevent directory traversal attacks (#422)
Samuel Attard committed
c43f92b
S
fix: add path validation to prevent directory traversal attacks (#418)
Samuel Attard committed
de0689b
S
fix: add offset validation to readFileSync to prevent out-of-bounds reads (#420)
Samuel Attard committed
97c09cc
S
fix: add header validation for ASAR archives (#421)
Samuel Attard committed
00e5293
S
fix: add circular symlink detection and depth limit protection (#423)
Samuel Attard committed
fd0fcd8
April 2, 2026
D
build(deps): bump azure/cli from 2.2.0 to 3.0.0 (#430)
dependabot[bot] committed
e222aea
April 1, 2026
D
build(deps): bump azure/login from 2.3.0 to 3.0.0 (#427)
dependabot[bot] committed
54e4795
D
build(deps): bump actions/setup-node from 6.2.0 to 6.3.0 (#429)
dependabot[bot] committed
10bb2a6
D
build(deps): bump dsanders11/project-actions from 1.7.0 to 2.0.0 (#428)
dependabot[bot] committed
1f7df71
March 31, 2026
E
feat: Revert "feat: add integrity digest management commands and functional… (#424)
Erick Zhao committed
49681b1
D
build(deps): bump picomatch from 2.3.1 to 2.3.2 (#426)
dependabot[bot] committed
ba1bcc1
S
build: add tsx to devDependencies (#425)
Samuel Attard committed
4a3e7ae
March 28, 2026
S
perf: 5-7x faster packing, 15-20% faster extraction (#414)
Samuel Attard committed
79686b6
March 24, 2026
S
test: split robustness-spec into module-focused spec files (#417)
Samuel Attard committed
24191b4
S
fix: pickle resize overflow, stream flush race, integrity block boundary (#413)
Samuel Attard committed
f1f0a8f