mend-bolt-for-github[bot]

## WS-2023-0439 - High Severity Vulnerability Vulnerable Library - axios-0.21.4.tgz Promise based HTTP client for the browser and node.js Library home page: https://registry.npmjs.org/axios/-/axios-0.21.4.tgz Path to dependency file: /dmplugins/package.json Path to...

## CVE-2024-6531 - Medium Severity Vulnerability Vulnerable Library - bootstrap-4.6.0.tgz The most popular front-end framework for developing responsive, mobile first projects on the web. Library home page: https://registry.npmjs.org/bootstrap/-/bootstrap-4.6.0.tgz Path to...

## CVE-2024-11831 - Medium Severity Vulnerability Vulnerable Libraries - serialize-javascript-4.0.0.tgz, serialize-javascript-5.0.1.tgz serialize-javascript-4.0.0.tgz Serialize JavaScript to a superset of JSON that includes regular expressions and functions. Library home page: https://registry.npmjs.org/serialize-javascript/-/serialize-javascript-4.0.0.tgz Path...

## CVE-2024-48949 - Critical Severity Vulnerability Vulnerable Library - elliptic-6.5.4.tgz EC cryptography Library home page: https://registry.npmjs.org/elliptic/-/elliptic-6.5.4.tgz Path to dependency file: /dmreactplugin/package.json Path to vulnerable library: /dmreactplugin/package.json Dependency Hierarchy: - react-scripts-4.0.3.tgz...

## CVE-2024-48948 - Medium Severity Vulnerability Vulnerable Library - elliptic-6.5.4.tgz EC cryptography Library home page: https://registry.npmjs.org/elliptic/-/elliptic-6.5.4.tgz Path to dependency file: /dmreactplugin/package.json Path to vulnerable library: /dmreactplugin/package.json Dependency Hierarchy: - react-scripts-4.0.3.tgz...

## CVE-2024-52798 - High Severity Vulnerability Vulnerable Library - path-to-regexp-0.1.7.tgz Express style path to RegExp utility Library home page: https://registry.npmjs.org/path-to-regexp/-/path-to-regexp-0.1.7.tgz Path to dependency file: /dmreactplugin/package.json Path to vulnerable library: /dmreactplugin/package.json...

## CVE-2024-47764 - Medium Severity Vulnerability Vulnerable Library - cookie-0.4.0.tgz HTTP server cookie parsing and serialization Library home page: https://registry.npmjs.org/cookie/-/cookie-0.4.0.tgz Path to dependency file: /dmreactplugin/package.json Path to vulnerable library: /dmreactplugin/package.json...

Welcome to [Mend Bolt for GitHub](https://github.com/apps/mend-bolt-for-github) (formerly WhiteSource). This is an onboarding PR to help you understand and configure settings before Mend starts scanning your repository for security vulnerabilities. :vertical_traffic_light:...

Vulnerable Library - webpack-cli-4.9.1.tgz Path to dependency file: /package.json Path to vulnerable library: /node_modules/execa/node_modules/cross-spawn/package.json,/node_modules/eslint/node_modules/cross-spawn/package.json Found in HEAD commit: e103b6386c0031666a1203e2e1dc93586e0cd828 ## Vulnerabilities | Vulnerability | Severity | CVSS | Dependency |...

Vulnerable Library - enzyme-3.11.0.tgz Path to dependency file: /package.json Path to vulnerable library: /node_modules/nearley/node_modules/semver/package.json,/node_modules/cross-spawn/node_modules/semver/package.json,/node_modules/normalize-package-data/node_modules/semver/package.json Found in HEAD commit: e103b6386c0031666a1203e2e1dc93586e0cd828 ## Vulnerabilities | Vulnerability | Severity | CVSS | Dependency |...