Skip to content

[Snyk] Fix for 1 vulnerabilities #35

New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Open
devpato wants to merge 1 commit into
base: main
Choose a base branch
from

fix: package.json & yarn.lock to reduce vulnerabilities

f29bfd4
Select commit
Loading
Failed to load commit list.
Open

[Snyk] Fix for 1 vulnerabilities #35

fix: package.json & yarn.lock to reduce vulnerabilities
f29bfd4
Select commit
Loading
Failed to load commit list.
Codacy Production / Codacy Static Code Analysis required action Mar 13, 2025 in 0s

10 new issues (0 max.) of at least minor severity.

Annotations

Check warning on line 442 in yarn.lock

See this annotation in the file changed.

@codacy-production codacy-production / Codacy Static Code Analysis

yarn.lock#L442 

Insecure dependency npm/@babel/helpers@7.12.17 (CVE-2025-27789: Babel is a compiler for writing next generation JavaScript. When using ...) (update to 7.26.10)

Check warning on line 1793 in yarn.lock

See this annotation in the file changed.

@codacy-production codacy-production / Codacy Static Code Analysis

yarn.lock#L1793 

Insecure dependency npm/@babel/runtime@7.12.18 (CVE-2025-27789: Babel is a compiler for writing next generation JavaScript. When using ...) (update to 7.26.10)

Check failure on line 1832 in yarn.lock

See this annotation in the file changed.

@codacy-production codacy-production / Codacy Static Code Analysis

yarn.lock#L1832 

Insecure dependency @babel/traverse@7.12.17 (CVE-2023-45133: babel: arbitrary code execution) (update to 7.23.2)

Check warning on line 3871 in yarn.lock

See this annotation in the file changed.

@codacy-production codacy-production / Codacy Static Code Analysis

yarn.lock#L3871 

Insecure dependency browserslist@4.16.3 (CVE-2021-23364: browserslist: parsing of invalid queries could result in Regular Expression Denial of Service (ReDoS)) (update to 4.16.5)

Check failure on line 4328 in yarn.lock

See this annotation in the file changed.

@codacy-production codacy-production / Codacy Static Code Analysis

yarn.lock#L4328 

Insecure dependency npm/cross-spawn@7.0.3 (CVE-2024-21538: cross-spawn: regular expression denial of service) (update to 7.0.5)

Check failure on line 7483 in yarn.lock

See this annotation in the file changed.

@codacy-production codacy-production / Codacy Static Code Analysis

yarn.lock#L7483 

Insecure dependency loader-utils@2.0.0 (CVE-2022-37599: loader-utils: regular expression denial of service in interpolateName.js) (update to 2.0.4)

Check failure on line 7732 in yarn.lock

See this annotation in the file changed.

@codacy-production codacy-production / Codacy Static Code Analysis

yarn.lock#L7732 

Insecure dependency minimatch@3.0.4 (CVE-2022-3517: nodejs-minimatch: ReDoS via the braceExpand function) (update to 3.0.5)

Check failure on line 7760 in yarn.lock

See this annotation in the file changed.

@codacy-production codacy-production / Codacy Static Code Analysis

yarn.lock#L7760 

Insecure dependency minimist@1.2.5 (CVE-2021-44906: minimist: prototype pollution) (update to 1.2.6)

Check warning on line 8844 in yarn.lock

See this annotation in the file changed.

@codacy-production codacy-production / Codacy Static Code Analysis

yarn.lock#L8844 

Insecure dependency postcss@7.0.39 (CVE-2023-44270: An issue was discovered in PostCSS before 8.4.31. The vulnerability af ...) (update to 8.4.31)

Check failure on line 9600 in yarn.lock

See this annotation in the file changed.

@codacy-production codacy-production / Codacy Static Code Analysis

yarn.lock#L9600 

Insecure dependency semver@5.7.1 (CVE-2022-25883: nodejs-semver: Regular expression denial of service) (update to 5.7.2)
View more details on Codacy Production