mend-bolt-for-github[bot]
mend-bolt-for-github[bot]
Welcome to [Mend Bolt for GitHub](https://github.com/apps/mend-bolt-for-github) (formerly WhiteSource). This is an onboarding PR to help you understand and configure settings before Mend starts scanning your repository for security vulnerabilities. :vertical_traffic_light:...
## CVE-2024-47068 - Medium Severity Vulnerability Vulnerable Library - rollup-1.32.1.tgz Next-generation ES module bundler Library home page: https://registry.npmjs.org/rollup/-/rollup-1.32.1.tgz Path to dependency file: /dmreactplugin/package.json Path to vulnerable library: /dmreactplugin/package.json Dependency Hierarchy:...
## CVE-2024-45590 - High Severity Vulnerability Vulnerable Library - body-parser-1.19.0.tgz Node.js body parsing middleware Library home page: https://registry.npmjs.org/body-parser/-/body-parser-1.19.0.tgz Path to dependency file: /dmreactplugin/package.json Path to vulnerable library: /dmreactplugin/package.json Dependency Hierarchy:...
## CVE-2024-43800 - Medium Severity Vulnerability Vulnerable Library - serve-static-1.14.1.tgz Serve static files Library home page: https://registry.npmjs.org/serve-static/-/serve-static-1.14.1.tgz Path to dependency file: /dmreactplugin/package.json Path to vulnerable library: /dmreactplugin/package.json Dependency Hierarchy: -...
## CVE-2024-43796 - Medium Severity Vulnerability Vulnerable Library - express-4.17.1.tgz Fast, unopinionated, minimalist web framework Library home page: https://registry.npmjs.org/express/-/express-4.17.1.tgz Path to dependency file: /dmreactplugin/package.json Path to vulnerable library: /dmreactplugin/package.json Dependency...
## CVE-2024-43799 - Medium Severity Vulnerability Vulnerable Library - send-0.17.1.tgz Better streaming static file server with Range and conditional-GET support Library home page: https://registry.npmjs.org/send/-/send-0.17.1.tgz Path to dependency file: /dmreactplugin/package.json Path...
## CVE-2024-45296 - High Severity Vulnerability Vulnerable Library - path-to-regexp-0.1.7.tgz Express style path to RegExp utility Library home page: https://registry.npmjs.org/path-to-regexp/-/path-to-regexp-0.1.7.tgz Path to dependency file: /dmreactplugin/package.json Path to vulnerable library: /dmreactplugin/package.json...
## CVE-2024-43788 - Medium Severity Vulnerability Vulnerable Library - webpack-4.44.2.tgz Packs CommonJs/AMD modules for the browser. Allows to split your codebase into multiple bundles, which can be loaded on demand....
## CVE-2024-45590 - High Severity Vulnerability Vulnerable Library - body-parser-1.19.0.tgz Node.js body parsing middleware Library home page: https://registry.npmjs.org/body-parser/-/body-parser-1.19.0.tgz Path to dependency file: /root/package.json Path to vulnerable library: /root/node_modules/body-parser/package.json,/server/client/node_modules/body-parser/package.json Dependency Hierarchy:...
## CVE-2024-43800 - Medium Severity Vulnerability Vulnerable Library - serve-static-1.14.1.tgz Serve static files Library home page: https://registry.npmjs.org/serve-static/-/serve-static-1.14.1.tgz Path to dependency file: /server/client/package.json Path to vulnerable library: /server/client/node_modules/serve-static/package.json,/root/node_modules/serve-static/package.json Dependency Hierarchy: -...