mend-bolt-for-github[bot]

## CVE-2025-50182 - Medium Severity Vulnerability Vulnerable Library - urllib3-1.25.10-py2.py3-none-any.whl HTTP library with thread-safe connection pooling, file post, and more. Library home page: https://files.pythonhosted.org/packages/9f/f0/a391d1463ebb1b233795cabfc0ef38d3db4442339de68f847026199e69d7/urllib3-1.25.10-py2.py3-none-any.whl Path to dependency file: /day70/requirements.txt Path...

## CVE-2025-50181 - Medium Severity Vulnerability Vulnerable Library - urllib3-1.25.10-py2.py3-none-any.whl HTTP library with thread-safe connection pooling, file post, and more. Library home page: https://files.pythonhosted.org/packages/9f/f0/a391d1463ebb1b233795cabfc0ef38d3db4442339de68f847026199e69d7/urllib3-1.25.10-py2.py3-none-any.whl Path to dependency file: /day70/requirements.txt Path...

## CVE-2025-27152 - High Severity Vulnerability Vulnerable Library - axios-0.19.0.tgz Promise based HTTP client for the browser and node.js Library home page: https://registry.npmjs.org/axios/-/axios-0.19.0.tgz Path to dependency file: /day59/package.json Path to...

## CVE-2024-21538 - High Severity Vulnerability Vulnerable Library - cross-spawn-3.0.1.tgz Cross platform child_process#spawn and child_process#spawnSync Library home page: https://registry.npmjs.org/cross-spawn/-/cross-spawn-3.0.1.tgz Path to dependency file: /day59/package.json Path to vulnerable library: /day59/package.json,/day60/package.json Dependency...

## CVE-2025-5889 - Low Severity Vulnerability Vulnerable Library - brace-expansion-1.1.11.tgz Brace expansion as known from sh/bash Library home page: https://registry.npmjs.org/brace-expansion/-/brace-expansion-1.1.11.tgz Path to dependency file: /day60/package.json Path to vulnerable library: /day60/package.json,/day59/package.json...

## CVE-2024-56326 - Medium Severity Vulnerability Vulnerable Library - Jinja2-2.11.2-py2.py3-none-any.whl A very fast and expressive template engine. Library home page: https://files.pythonhosted.org/packages/30/9e/f663a2aa66a09d838042ae1a2c5659828bb9b41ea3a6efa20a20fd92b121/Jinja2-2.11.2-py2.py3-none-any.whl Path to dependency file: /day70/requirements.txt Path to vulnerable library:...

## CVE-2024-49767 - High Severity Vulnerability Vulnerable Library - Werkzeug-1.0.1-py2.py3-none-any.whl The comprehensive WSGI web application library. Library home page: https://files.pythonhosted.org/packages/cc/94/5f7079a0e00bd6863ef8f1da638721e9da21e5bacee597595b318f71d62e/Werkzeug-1.0.1-py2.py3-none-any.whl Path to dependency file: /day70/requirements.txt Path to vulnerable library: /day70/requirements.txt,/day70/requirements.txt...

## CVE-2024-49766 - Low Severity Vulnerability Vulnerable Library - Werkzeug-1.0.1-py2.py3-none-any.whl The comprehensive WSGI web application library. Library home page: https://files.pythonhosted.org/packages/cc/94/5f7079a0e00bd6863ef8f1da638721e9da21e5bacee597595b318f71d62e/Werkzeug-1.0.1-py2.py3-none-any.whl Path to dependency file: /day70/requirements.txt Path to vulnerable library: /day70/requirements.txt,/day70/requirements.txt...

## WS-2023-0439 - High Severity Vulnerability Vulnerable Library - axios-0.19.0.tgz Promise based HTTP client for the browser and node.js Library home page: https://registry.npmjs.org/axios/-/axios-0.19.0.tgz Path to dependency file: /day59/package.json Path to...

## CVE-2025-27516 - High Severity Vulnerability Vulnerable Library - Jinja2-2.11.2-py2.py3-none-any.whl A very fast and expressive template engine. Library home page: https://files.pythonhosted.org/packages/30/9e/f663a2aa66a09d838042ae1a2c5659828bb9b41ea3a6efa20a20fd92b121/Jinja2-2.11.2-py2.py3-none-any.whl Path to dependency file: /day70/requirements.txt Path to vulnerable library:...