Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

fix(auth): update all non-major dependencies #1432

Open
wants to merge 1 commit into
base: dev
Choose a base branch
from
+1,828 −1,994

fix(auth): update all non-major dependencies

57f8743
Select commit
Loading
Failed to load commit list.
Open

fix(auth): update all non-major dependencies #1432

fix(auth): update all non-major dependencies
57f8743
Select commit
Loading
Failed to load commit list.
Mend Bolt for GitHub / Mend Security Check failed Nov 16, 2024 in 3m 8s

Security Report

2 new vulnerabilities were introduced in this branch.

❌ New vulnerabilities:

CVE Severity CVSS Score Vulnerable Library Suggested Fix Issue
MSC-2024-8222

Path to dependency file: /package.json

Path to vulnerable library: /package.json

Dependency Hierarchy:

-> @weareinreach/ui-0.100.0.tgz (Root Library)

   -> ahooks-3.8.1.tgz

     -> ❌ intersection-observer-0.12.2.tgz (Vulnerable Library)

Critical 9.8 intersection-observer-0.12.2.tgz #289
CVE-2024-21540

Path to dependency file: /package.json

Path to vulnerable library: /package.json

Dependency Hierarchy:

-> @weareinreach/app-0.100.0.tgz (Root Library)

   -> nextjs-8.38.0.tgz

     -> webpack-plugin-2.22.6.tgz

       -> webpack-5.96.1.tgz

         -> terser-webpack-plugin-5.3.10.tgz

           -> terser-5.36.0.tgz

             -> ❌ source-map-support-0.5.21.tgz (Vulnerable Library)

High 7.5 source-map-support-0.5.21.tgz #654

Base branch total remaining vulnerabilities: 1
Base branch commit: 6822567dcd269cd39bf399c01866ec79ee323bac


Total libraries scanned: 1250

Scan token: a380a819b8a8449699f757ae3f1b2a3d

View more details on Mend Bolt for GitHub