chart-tool
chart-tool copied to clipboard
globeandmail
A responsive charting application
**Vulnerabilities** DepShield reports that this application's usage of [lodash.mapvalues:4.6.0](https://ossindex.sonatype.org/component/pkg:npm/[email protected]) results in the following vulnerability(s): - (CVSS **7.4**) [CWE-471: Modification of Assumed-Immutable Data (MAID)](https://ossindex.sonatype.org/vuln/0f23ff35-235f-404f-8118-bc1580673fd0) - (CVSS **6.5**) [[CVE-2018-3721] lodash node module...
![sonatype-depshield[bot] avatar](https://avatars.githubusercontent.com/in/13833?v=4 "sonatype-depshield[bot] avatar"){kind=avatar}
**Vulnerabilities** DepShield reports that this application's usage of [lodash._basevalues:3.0.0](https://ossindex.sonatype.org/component/pkg:npm/[email protected]) results in the following vulnerability(s): - (CVSS **7.4**) [CWE-471: Modification of Assumed-Immutable Data (MAID)](https://ossindex.sonatype.org/vuln/0f23ff35-235f-404f-8118-bc1580673fd0) **Occurrences** lodash._basevalues:3.0.0 is a transitive dependency introduced...
**Vulnerabilities** DepShield reports that this application's usage of [lodash._getnative:3.9.1](https://ossindex.sonatype.org/component/pkg:npm/[email protected]) results in the following vulnerability(s): - (CVSS **7.4**) [CWE-471: Modification of Assumed-Immutable Data (MAID)](https://ossindex.sonatype.org/vuln/0f23ff35-235f-404f-8118-bc1580673fd0) **Occurrences** lodash._getnative:3.9.1 is a transitive dependency introduced...
**Vulnerabilities** DepShield reports that this application's usage of [minimist:0.0.8](https://ossindex.sonatype.org/component/pkg:npm/[email protected]) results in the following vulnerability(s): - (CVSS **8.8**) [CWE-94: Improper Control of Generation of Code ('Code Injection')](https://ossindex.sonatype.org/vuln/a0172c09-270c-4d3c-9816-564f20f372db) **Occurrences** minimist:0.0.8 is a...
**Vulnerabilities** DepShield reports that this application's usage of [acorn:3.3.0](https://ossindex.sonatype.org/component/pkg:npm/[email protected]) results in the following vulnerability(s): - (CVSS **7.5**) [CWE-400: Uncontrolled Resource Consumption ('Resource Exhaustion')](https://ossindex.sonatype.org/vuln/e7bea77b-f37f-4290-a069-08fc9c4b6ac0) **Occurrences** acorn:3.3.0 is a transitive dependency introduced...
**Vulnerabilities** DepShield reports that this application's usage of [ini:1.3.4](https://ossindex.sonatype.org/component/pkg:npm/[email protected]) results in the following vulnerability(s): - (CVSS **7.4**) [CWE-471: Modification of Assumed-Immutable Data (MAID)](https://ossindex.sonatype.org/vuln/c08153de-a0ad-4212-963d-3de92eaab509) **Occurrences** ini:1.3.4 is a transitive dependency introduced...
**Vulnerabilities** DepShield reports that this application's usage of [lodash.pick:4.4.0](https://ossindex.sonatype.org/component/pkg:npm/[email protected]) results in the following vulnerability(s): - (CVSS **7.4**) [CWE-471: Modification of Assumed-Immutable Data (MAID)](https://ossindex.sonatype.org/vuln/0f23ff35-235f-404f-8118-bc1580673fd0) **Occurrences** lodash.pick:4.4.0 is a transitive dependency introduced...
**Vulnerabilities** DepShield reports that this application's usage of [lodash._reinterpolate:3.0.0](https://ossindex.sonatype.org/component/pkg:npm/[email protected]) results in the following vulnerability(s): - (CVSS **7.4**) [CWE-471: Modification of Assumed-Immutable Data (MAID)](https://ossindex.sonatype.org/vuln/0f23ff35-235f-404f-8118-bc1580673fd0) **Occurrences** lodash._reinterpolate:3.0.0 is a transitive dependency introduced...
**Vulnerabilities** DepShield reports that this application's usage of [tar:4.4.1](https://ossindex.sonatype.org/component/pkg:npm/[email protected]) results in the following vulnerability(s): - (CVSS **7.5**) [[CVE-2018-20834] Improper Link Resolution Before File Access ("Link Following")](https://ossindex.sonatype.org/vuln/c4a1ca70-9c58-4774-b9aa-1a8ebbdb90c1) - (CVSS **7.5**) [CWE-62:...
**Vulnerabilities** DepShield reports that this application's usage of [ini:1.3.5](https://ossindex.sonatype.org/component/pkg:npm/[email protected]) results in the following vulnerability(s): - (CVSS **7.4**) [CWE-471: Modification of Assumed-Immutable Data (MAID)](https://ossindex.sonatype.org/vuln/c08153de-a0ad-4212-963d-3de92eaab509) **Occurrences** ini:1.3.5 is a transitive dependency introduced...