(AST-157364) Expand Parser Support by cx-atish-jadhav · Pull Request #22 · Checkmarx/manifest-parser

StepSecurity Required Checks

Finished StepSecurity Required Checks

PyPI Compromised Packages Check - Checks for compromised PyPI package versions in the PR
PyPI Package Cooldown Check - Fails if any PyPI package version in the PR was released within the configured cooldown period
Pwn Request Vulnerabilities Check - Checks for Pwn Request vulnerabilities in the PR via risky triggers
Script Injection Check - Checks for script injection vulnerabilities in the PR
NPM Compromised Packages Check - Checks for compromised npm package versions in the PR
NPM Package Cooldown Check - Fails if any package version in the PR was released within the configured cooldown period, helping to avoid brand-new (and potentially unreviewed or malicious) releases

✅ NPM Package Cooldown Check

No npm package upgrades to recent releases found in current PR.

✅ NPM Compromised Packages Check

No Compromised npm packages are added in current PR.

✅ PyPI Compromised Packages Check

No compromised PyPI package versions found in current PR.

Package Name	Ecosystem	Current Version	File
asgiref	pip	3.8.1	internal/testdata/requirements-pip-compile.txt
django	pip	5.2.13	internal/testdata/requirements-pip-compile.txt
sqlparse	pip	0.5.5	internal/testdata/requirements-pip-compile.txt
tzdata	pip	2025.3	internal/testdata/requirements-pip-compile.txt
asgiref	pip	3.8.1	internal/testdata/requirements-pip-freeze.txt
Django	pip	5.2.13	internal/testdata/requirements-pip-freeze.txt
sqlparse	pip	0.5.5	internal/testdata/requirements-pip-freeze.txt
tzdata	pip	2025.3	internal/testdata/requirements-pip-freeze.txt
asgiref	pip	3.8.1	internal/testdata/requirements-uv-export.txt
django	pip	5.2.13	internal/testdata/requirements-uv-export.txt
pycryptodome	pip	3.21.0	internal/testdata/requirements-uv-export.txt
sqlparse	pip	0.5.5	internal/testdata/requirements-uv-export.txt
typing-extensions	pip	4.12.2	internal/testdata/requirements-uv-export.txt
tzdata	pip	2025.3	internal/testdata/requirements-uv-export.txt
flask	pip	2.0.1	internal/testdata/setup.cfg
pillow	pip	9.0.0	internal/testdata/setup.cfg
cryptography	pip	2.9.2	internal/testdata/setup.cfg
flask	pip	2.0.1	internal/testdata/setup.py
pillow	pip	9.0.0	internal/testdata/setup.py
cryptography	pip	2.9.2	internal/testdata/setup.py

✅ PyPI Package Cooldown Check

No PyPI package upgrades to recent releases found in current PR.

Package Name	Ecosystem	Current Version	File	Release Date
asgiref	pip	3.8.1	internal/testdata/requirements-pip-compile.txt	2024-03-22 14:39:34.521795 +0000 UTC
django	pip	5.2.13	internal/testdata/requirements-pip-compile.txt	2026-04-07 14:02:08.883722 +0000 UTC
sqlparse	pip	0.5.5	internal/testdata/requirements-pip-compile.txt	2025-12-19 07:17:46.573022 +0000 UTC
tzdata	pip	2025.3	internal/testdata/requirements-pip-compile.txt	2025-12-13 17:45:33.889947 +0000 UTC
asgiref	pip	3.8.1	internal/testdata/requirements-pip-freeze.txt	2024-03-22 14:39:34 +0000 UTC
Django	pip	5.2.13	internal/testdata/requirements-pip-freeze.txt	2026-04-07 14:02:08.883722 +0000 UTC
sqlparse	pip	0.5.5	internal/testdata/requirements-pip-freeze.txt	2025-12-19 07:17:46 +0000 UTC
tzdata	pip	2025.3	internal/testdata/requirements-pip-freeze.txt	2025-12-13 17:45:33 +0000 UTC
asgiref	pip	3.8.1	internal/testdata/requirements-uv-export.txt	2024-03-22 14:39:34 +0000 UTC
django	pip	5.2.13	internal/testdata/requirements-uv-export.txt	2026-04-07 14:02:08 +0000 UTC

✅ Script Injection Vulnerabilities Check

No Script Injection vulnerabilities found in this PR.

✅ Pwn Request Vulnerabilities Check

No Pwn Request vulnerabilities found in this PR.