mend-bolt-for-github[bot]

## CVE-2025-59437 - Low Severity Vulnerability Vulnerable Library - ip-1.1.5.tgz [](https://www.npmjs.com/package/ip) Library home page: https://registry.npmjs.org/ip/-/ip-1.1.5.tgz Path to dependency file: /root/package.json Path to vulnerable library: /root/node_modules/ip/package.json,/server/client/node_modules/ip/package.json Dependency Hierarchy: - webpack-dev-server-4.2.1.tgz (Root...

## CVE-2025-59436 - Low Severity Vulnerability Vulnerable Library - ip-1.1.5.tgz [](https://www.npmjs.com/package/ip) Library home page: https://registry.npmjs.org/ip/-/ip-1.1.5.tgz Path to dependency file: /root/package.json Path to vulnerable library: /root/node_modules/ip/package.json,/server/client/node_modules/ip/package.json Dependency Hierarchy: - webpack-dev-server-4.2.1.tgz (Root...

## CVE-2025-7339 - Low Severity Vulnerability Vulnerable Library - on-headers-1.0.2.tgz Execute a listener when a response is about to write headers Library home page: https://registry.npmjs.org/on-headers/-/on-headers-1.0.2.tgz Dependency Hierarchy: - webpack-dev-server-4.2.1.tgz (Root...

## CVE-2025-30360 - Medium Severity Vulnerability Vulnerable Library - webpack-dev-server-4.2.1.tgz Serves a webpack app. Updates the browser on changes. Library home page: https://registry.npmjs.org/webpack-dev-server/-/webpack-dev-server-4.2.1.tgz Dependency Hierarchy: - :x: **webpack-dev-server-4.2.1.tgz** (Vulnerable Library)...

## CVE-2024-47081 - Medium Severity Vulnerability Vulnerable Library - requests-2.27.1-py2.py3-none-any.whl Python HTTP for Humans. Library home page: https://files.pythonhosted.org/packages/2d/61/08076519c80041bc0ffa1a8af0cbd3bf3e2b62af10435d269a9d0f40564d/requests-2.27.1-py2.py3-none-any.whl Path to dependency file: /server/requirements.txt Path to vulnerable library: /server/requirements.txt Dependency Hierarchy:...

## CVE-2025-50181 - Medium Severity Vulnerability Vulnerable Library - urllib3-1.26.8-py2.py3-none-any.whl HTTP library with thread-safe connection pooling, file post, and more. Library home page: https://files.pythonhosted.org/packages/4e/b8/f5a25b22e803f0578e668daa33ba3701bb37858ec80e08a150bd7d2cf1b1/urllib3-1.26.8-py2.py3-none-any.whl Path to dependency file: /server/requirements.txt Path...

## CVE-2025-32996 - Medium Severity Vulnerability Vulnerable Library - http-proxy-middleware-2.0.1.tgz The one-liner node.js proxy middleware for connect, express and browser-sync Library home page: https://registry.npmjs.org/http-proxy-middleware/-/http-proxy-middleware-2.0.1.tgz Path to dependency file: /root/package.json Path...

## CVE-2025-32997 - Medium Severity Vulnerability Vulnerable Library - http-proxy-middleware-2.0.1.tgz The one-liner node.js proxy middleware for connect, express and browser-sync Library home page: https://registry.npmjs.org/http-proxy-middleware/-/http-proxy-middleware-2.0.1.tgz Path to dependency file: /root/package.json Path...

## CVE-2025-30359 - Medium Severity Vulnerability Vulnerable Library - webpack-dev-server-4.2.1.tgz Serves a webpack app. Updates the browser on changes. Library home page: https://registry.npmjs.org/webpack-dev-server/-/webpack-dev-server-4.2.1.tgz Dependency Hierarchy: - :x: **webpack-dev-server-4.2.1.tgz** (Vulnerable Library)...

## CVE-2025-62727 - High Severity Vulnerability Vulnerable Library - starlette-0.27.0-py3-none-any.whl The little ASGI library that shines. Library home page: https://files.pythonhosted.org/packages/58/f8/e2cca22387965584a409795913b774235752be4176d276714e15e1a58884/starlette-0.27.0-py3-none-any.whl Path to dependency file: /backend/requirements.txt Path to vulnerable library: /backend/requirements.txt,/backend/requirements.txt...