contacts
contacts copied to clipboard
nextcloud
[stable6.0] Fix npm audit
Audit report
This audit fix resolves 8 of the total 13 vulnerabilities found in your project.
Updated dependencies
- @nextcloud/capabilities
- babel-helper-function-name
- babel-plugin-transform-class-properties
- babel-template
- babel-traverse
- express
- follow-redirects
- webpack-dev-middleware
Fixed vulnerabilities
@nextcloud/capabilities #
- Caused by vulnerable dependency:
- babel-plugin-transform-class-properties
- Affected versions: 1.1.0
- Package usage:
node_modules/@nextcloud/capabilities
babel-helper-function-name #
- Caused by vulnerable dependency:
- babel-template
- babel-traverse
- Affected versions: *
- Package usage:
node_modules/babel-helper-function-name
babel-plugin-transform-class-properties #
- Caused by vulnerable dependency:
- babel-helper-function-name
- babel-template
- Affected versions: >=6.11.5
- Package usage:
node_modules/babel-plugin-transform-class-properties
babel-template #
- Caused by vulnerable dependency:
- babel-traverse
- Affected versions: *
- Package usage:
node_modules/babel-template
babel-traverse #
- Babel vulnerable to arbitrary code execution when compiling specifically crafted malicious code
- Severity: critical 🚨 (CVSS 9.4)
- Reference: https://github.com/advisories/GHSA-67hx-6x53-jw92
- Affected versions: *
- Package usage:
node_modules/babel-traverse
express #
- Express.js Open Redirect in malformed URLs
- Severity: moderate (CVSS 6.1)
- Reference: https://github.com/advisories/GHSA-rv95-896h-c2vc
- Affected versions: <4.19.2
- Package usage:
node_modules/express
follow-redirects #
- Follow Redirects improperly handles URLs in the url.parse() function
- Severity: moderate (CVSS 6.1)
- Reference: https://github.com/advisories/GHSA-jchw-25xp-jwwc
- Affected versions: <=1.15.5
- Package usage:
node_modules/follow-redirects
webpack-dev-middleware #
- Path traversal in webpack-dev-middleware
- Severity: high (CVSS 7.4)
- Reference: https://github.com/advisories/GHSA-wr3j-pwj9-hqq6
- Affected versions: <=5.3.3
- Package usage:
node_modules/webpack-dev-middleware
