Bump fast-xml-parser from 4.2.4 to 4.2.5 in /web #3
DryRunSecurity / Sensitive Files Analyzer
succeeded
May 12, 2024 in 1s
DryRun Security
Details
Sensitive Files Analyzer Findings: 2 detected
⚠️ Potential Sensitive File web/package-lock.json (click for details)
| Type | Potential Sensitive File |
| Description | Node.js/ExpressJS/Next.js applications manage their dependencies through package.json and package-lock.json files. A change in these files may indicate an addition of a library/dependency which could introduce additional risk to the application either through vulnerable code, expansion of the application's attack surface via additional routes, or malicious code. |
| Filename | web/package-lock.json |
| CodeLink | https://github.com/intelops/qualityTrace/blob/243449e960a46adf2fd00534697512e28b722b8a/web/package-lock.json#L38-L44 |
⚠️ Potential Sensitive File web/package.json (click for details)
| Type | Potential Sensitive File |
| Description | Node.js/ExpressJS/Next.js applications manage their dependencies through package.json and package-lock.json files. A change in these files may indicate an addition of a library/dependency which could introduce additional risk to the application either through vulnerable code, expansion of the application's attack surface via additional routes, or malicious code. |
| Filename | web/package.json |
| CodeLink | https://github.com/intelops/qualityTrace/blob/243449e960a46adf2fd00534697512e28b722b8a/web/package.json#L34-L40 |
Loading