Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

Bump send and express #213

Open
wants to merge 1 commit into
base: master
Choose a base branch
from

Bump send and express

499b5e6
Select commit
Loading
Failed to load commit list.
Open

Bump send and express #213

Bump send and express
499b5e6
Select commit
Loading
Failed to load commit list.
GitHub Advanced Security / Trivy failed Sep 17, 2024 in 3s

2 new alerts including 1 high severity security vulnerability

New alerts in code changed by this pull request

Security Alerts:

  • 1 high
  • 1 medium

See annotations below for details.

View all branch alerts.

Annotations

Check failure on line 6369 in yarn.lock

See this annotation in the file changed.

Code scanning / Trivy

path-to-regexp: Backtracking regular expressions cause ReDoS High

Package: path-to-regexp
Installed Version: 2.2.1
Vulnerability CVE-2024-45296
Severity: HIGH
Fixed Version: 1.9.0, 0.1.10, 8.0.0, 3.3.0, 6.3.0
Link: CVE-2024-45296

Check warning on line 8269 in yarn.lock

See this annotation in the file changed.

Code scanning / Trivy

webpack: DOM Clobbering vulnerability in AutoPublicPathRuntimeModule Medium

Package: webpack
Installed Version: 5.93.0
Vulnerability CVE-2024-43788
Severity: MEDIUM
Fixed Version: 5.94.0
Link: CVE-2024-43788