mend-bolt-for-github[bot]
mend-bolt-for-github[bot]
## CVE-2021-23368 - Medium Severity Vulnerability Vulnerable Library - postcss-7.0.14.tgz Tool for transforming styles with JS plugins Library home page: https://registry.npmjs.org/postcss/-/postcss-7.0.14.tgz Path to dependency file: /package.json Path to vulnerable library:...
## CVE-2021-23364 - Medium Severity Vulnerability Vulnerable Library - browserslist-4.5.5.tgz Share target browsers between different front-end tools, like Autoprefixer, Stylelint and babel-env-preset Library home page: https://registry.npmjs.org/browserslist/-/browserslist-4.5.5.tgz Path to dependency file:...
## CVE-2020-7720 - High Severity Vulnerability Vulnerable Library - node-forge-0.9.0.tgz JavaScript implementations of network transports, cryptography, ciphers, PKI, message digests, and various utilities. Library home page: https://registry.npmjs.org/node-forge/-/node-forge-0.9.0.tgz Path to dependency...
## WS-2019-0425 - Medium Severity Vulnerability Vulnerable Library - mocha-2.5.3.min.js simple, flexible, fun test framework Library home page: https://cdnjs.cloudflare.com/ajax/libs/mocha/2.5.3/mocha.min.js Path to dependency file: /node_modules/intersection-observer/intersection-observer-test.html Path to vulnerable library: /node_modules/intersection-observer/intersection-observer-test.html Dependency...
## CVE-2022-0639 - Medium Severity Vulnerability Vulnerable Library - url-parse-1.4.7.tgz Small footprint URL parser that works seamlessly across Node.js and browser environments Library home page: https://registry.npmjs.org/url-parse/-/url-parse-1.4.7.tgz Path to dependency file:...
## CVE-2022-31129 - High Severity Vulnerability Vulnerable Library - moment-2.29.1.tgz Parse, validate, manipulate, and display dates Library home page: https://registry.npmjs.org/moment/-/moment-2.29.1.tgz Path to dependency file: /package.json Path to vulnerable library: /node_modules/moment/package.json...
## CVE-2020-15366 - Medium Severity Vulnerability Vulnerable Libraries - ajv-6.10.0.tgz, ajv-6.9.1.tgz, ajv-5.5.2.tgz ajv-6.10.0.tgz Another JSON Schema Validator Library home page: https://registry.npmjs.org/ajv/-/ajv-6.10.0.tgz Path to dependency file: /package.json Path to vulnerable library:...
## WS-2020-0127 - Medium Severity Vulnerability Vulnerable Library - npm-registry-fetch-3.9.1.tgz Fetch-based http client for use with npm registry APIs Library home page: https://registry.npmjs.org/npm-registry-fetch/-/npm-registry-fetch-3.9.1.tgz Path to dependency file: /package.json Path to...
## CVE-2020-7608 - Medium Severity Vulnerability Vulnerable Library - yargs-parser-11.1.1.tgz the mighty option parser used by yargs Library home page: https://registry.npmjs.org/yargs-parser/-/yargs-parser-11.1.1.tgz Path to dependency file: /package.json Path to vulnerable library:...
## CVE-2020-36048 - High Severity Vulnerability Vulnerable Library - engine.io-3.5.0.tgz The realtime engine behind Socket.IO. Provides the foundation of a bidirectional connection between client and server Library home page: https://registry.npmjs.org/engine.io/-/engine.io-3.5.0.tgz...