Skip to content

slopless 0.2.21

Choose a tag to compare

View all tags
@tartakovsky tartakovsky released this 02 Jun 18:26
· 2 commits to main since this release
v0.2.21
156226e
This commit was created on GitHub.com and signed with GitHub’s verified signature.
GPG key ID: B5690EEEBB952194
Verified
Learn about vigilant mode.

slopless 0.2.21

Docs and supply-chain housekeeping on top of 0.2.20. No rule or behavior changes.

  • README: new "What it catches" example (structural/rhetorical slop, no duplicated spans), npx slopless --help surfaced in the usage loop, removed the rate-limited minzip and broken snyk-advisor badges, added a credit to Graham Rowe.
  • CI hardening: scoped workflow token permissions to contents: read and SHA-pinned every GitHub Action.
  • Supply chain: forced the patched qs 6.15.2 across the dependency tree (CVE-2026-8723) for local/CI installs; Dependabot now ignores @types/node semver-major to track the Node-22 baseline and waits out pnpm's release-age gate.
Assets 2
Loading