chart-tool
chart-tool copied to clipboard
globeandmail
A responsive charting application
**Vulnerabilities** DepShield reports that this application's usage of [lodash.template:4.4.0](https://ossindex.sonatype.org/component/pkg:npm/[email protected]) results in the following vulnerability(s): - (CVSS **7.4**) [CWE-471: Modification of Assumed-Immutable Data (MAID)](https://ossindex.sonatype.org/vuln/0f23ff35-235f-404f-8118-bc1580673fd0) **Occurrences** lodash.template:4.4.0 is a transitive dependency introduced...
![sonatype-depshield[bot] avatar](https://avatars.githubusercontent.com/in/13833?v=4 "sonatype-depshield[bot] avatar"){kind=avatar}
**Vulnerabilities** DepShield reports that this application's usage of [yargs-parser:4.2.1](https://ossindex.sonatype.org/component/pkg:npm/[email protected]) results in the following vulnerability(s): - (CVSS **7.5**) [CWE-400: Uncontrolled Resource Consumption ('Resource Exhaustion')](https://ossindex.sonatype.org/vuln/7ccaaed0-205b-4382-a963-8a30a0b151b1) - (CVSS **7.5**) [[CVE-2020-7608] yargs-parser could be...
**Vulnerabilities** DepShield reports that this application's usage of [lodash.template:3.6.2](https://ossindex.sonatype.org/component/pkg:npm/[email protected]) results in the following vulnerability(s): - (CVSS **7.4**) [CWE-471: Modification of Assumed-Immutable Data (MAID)](https://ossindex.sonatype.org/vuln/0f23ff35-235f-404f-8118-bc1580673fd0) **Occurrences** lodash.template:3.6.2 is a transitive dependency introduced...
**Vulnerabilities** DepShield reports that this application's usage of [socket.io-parser:3.1.3](https://ossindex.sonatype.org/component/pkg:npm/[email protected]) results in the following vulnerability(s): - (CVSS **7.5**) [[CVE-2020-36049] socket.io-parser before 3.4.1 allows attackers to cause a denial of service (mem...](https://ossindex.sonatype.org/vuln/d6bd264b-68c8-4051-b198-97847693ee93)...
**Vulnerabilities** DepShield reports that this application's usage of [postcss:6.0.23](https://ossindex.sonatype.org/component/pkg:npm/[email protected]) results in the following vulnerability(s): - (CVSS **7.5**) [CWE-400: Uncontrolled Resource Consumption ('Resource Exhaustion')](https://ossindex.sonatype.org/vuln/e3f310ed-219c-4087-aa58-8425b13c3ec5) **Occurrences** postcss:6.0.23 is a transitive dependency introduced...
**Vulnerabilities** DepShield reports that this application's usage of [mem:1.1.0](https://ossindex.sonatype.org/component/pkg:npm/[email protected]) results in the following vulnerability(s): - (CVSS **7.5**) [CWE-400: Uncontrolled Resource Consumption ('Resource Exhaustion')](https://ossindex.sonatype.org/vuln/e8694dac-226d-4f73-b5f0-e2fd741f6bfd) **Occurrences** mem:1.1.0 is a transitive dependency introduced...
**Vulnerabilities** DepShield reports that this application's usage of [lodash._reescape:3.0.0](https://ossindex.sonatype.org/component/pkg:npm/[email protected]) results in the following vulnerability(s): - (CVSS **7.4**) [CWE-471: Modification of Assumed-Immutable Data (MAID)](https://ossindex.sonatype.org/vuln/0f23ff35-235f-404f-8118-bc1580673fd0) **Occurrences** lodash._reescape:3.0.0 is a transitive dependency introduced...
**Vulnerabilities** DepShield reports that this application's usage of [js-yaml:3.12.0](https://ossindex.sonatype.org/component/pkg:npm/[email protected]) results in the following vulnerability(s): - (CVSS **8.8**) [CWE-94: Improper Control of Generation of Code ('Code Injection')](https://ossindex.sonatype.org/vuln/75697bf6-491a-4c19-beec-de561c84782b) - (CVSS **7.5**) [CWE-400:...
**Vulnerabilities** DepShield reports that this application's usage of [lodash.clonedeep:4.5.0](https://ossindex.sonatype.org/component/pkg:npm/[email protected]) results in the following vulnerability(s): - (CVSS **7.4**) [CWE-471: Modification of Assumed-Immutable Data (MAID)](https://ossindex.sonatype.org/vuln/0f23ff35-235f-404f-8118-bc1580673fd0) - (CVSS **6.5**) [[CVE-2018-3721] lodash node module...
**Vulnerabilities** DepShield reports that this application's usage of [lodash.restparam:3.6.1](https://ossindex.sonatype.org/component/pkg:npm/[email protected]) results in the following vulnerability(s): - (CVSS **7.4**) [CWE-471: Modification of Assumed-Immutable Data (MAID)](https://ossindex.sonatype.org/vuln/0f23ff35-235f-404f-8118-bc1580673fd0) **Occurrences** lodash.restparam:3.6.1 is a transitive dependency introduced...