workflow_pdf_converter
workflow_pdf_converter copied to clipboard
nextcloud
[stable30] Fix npm audit
Audit report
This audit fix resolves 6 of the total 18 vulnerabilities found in your project.
Updated dependencies
- @nextcloud/webpack-vue-config
- @vue/component-compiler-utils
- http-proxy-middleware
- postcss
- vue-loader
- vue-template-compiler
Fixed vulnerabilities
@nextcloud/webpack-vue-config #
- Caused by vulnerable dependency:
- vue
- vue-loader
- vue-template-compiler
- Affected versions: <=6.2.0
- Package usage:
node_modules/@nextcloud/webpack-vue-config
@vue/component-compiler-utils #
- Caused by vulnerable dependency:
- postcss
- Affected versions: *
- Package usage:
node_modules/@vue/component-compiler-utils
http-proxy-middleware #
- http-proxy-middleware allows fixRequestBody to proceed even if bodyParser has failed
- Severity: moderate (CVSS 4)
- Reference: https://github.com/advisories/GHSA-9gqv-wp59-fq42
- Affected versions: <=2.0.8
- Package usage:
node_modules/http-proxy-middleware
postcss #
- PostCSS line return parsing error
- Severity: moderate (CVSS 5.3)
- Reference: https://github.com/advisories/GHSA-7fh5-64p2-3v2j
- Affected versions: <8.4.31
- Package usage:
node_modules/@vue/component-compiler-utils/node_modules/postcss
vue-loader #
- Caused by vulnerable dependency:
- @vue/component-compiler-utils
- Affected versions: 15.0.0-beta.1 - 15.11.1
- Package usage:
node_modules/vue-loader
vue-template-compiler #
- vue-template-compiler vulnerable to client-side Cross-Site Scripting (XSS)
- Severity: moderate (CVSS 4.2)
- Reference: https://github.com/advisories/GHSA-g3ch-rx76-35fx
- Affected versions: >=2.0.0
- Package usage:
node_modules/vue-template-compiler
