Remove `babel-core` dep and upgrade `babel-template` (#1095)
Security Report
| CVE | Severity |  CVSS Score |
Vulnerable Library | Suggested Fix | Issue |
|---|---|---|---|---|---|
CVE-2023-45133Path to dependency file: /package.json Path to vulnerable library: /package.json Dependency Hierarchy: -> jest-cli-24.9.0.tgz (Root Library) -> jest-config-24.9.0.tgz -> jest-jasmine2-24.9.0.tgz -> ❌ traverse-7.18.11.tgz (Vulnerable Library) |
 High |
8.8 | traverse-7.18.11.tgz | Upgrade to version: @babel/traverse - 7.23.2 | #630 |
CVE-2023-45133Path to dependency file: /package.json Path to vulnerable library: /package.json Dependency Hierarchy: -> core-8.0.0.tgz (Root Library) -> core-7.21.4.tgz -> ❌ traverse-7.21.4.tgz (Vulnerable Library) |
High |
8.8 | traverse-7.21.4.tgz | Upgrade to version: @babel/traverse - 7.23.2 | #1090 |
CVE-2023-45133Path to dependency file: /package.json Path to vulnerable library: /package.json Dependency Hierarchy: -> react-view-2.3.2.tgz (Root Library) -> ❌ traverse-7.12.10.tgz (Vulnerable Library) |
High |
8.8 | traverse-7.12.10.tgz | Upgrade to version: @babel/traverse - 7.23.2 | #1089 |
CVE-2023-45857Path to dependency file: /package.json Path to vulnerable library: /package.json Dependency Hierarchy: -> start-server-and-test-2.0.0.tgz (Root Library) -> wait-on-7.0.1.tgz -> ❌ axios-0.27.2.tgz (Vulnerable Library) |
High |
7.5 | axios-0.27.2.tgz | Upgrade to version: axios - 1.6.0 | #1149 |
CVE-2023-45857Path to dependency file: /package.json Path to vulnerable library: /package.json Dependency Hierarchy: -> codesandbox-2.2.3.tgz (Root Library) -> ❌ axios-0.22.0.tgz (Vulnerable Library) |
High |
7.5 | axios-0.22.0.tgz | Upgrade to version: axios - 1.6.0 | #1148 |
CVE-2023-46234Path to dependency file: /package.json Path to vulnerable library: /package.json Dependency Hierarchy: -> eslint-import-resolver-webpack-0.13.0.tgz (Root Library) -> node-libs-browser-2.2.1.tgz -> crypto-browserify-3.12.0.tgz -> ❌ browserify-sign-4.0.4.tgz (Vulnerable Library) |
 Medium |
6.5 | browserify-sign-4.0.4.tgz | Upgrade to version: browserify-sign - 4.2.2 | #1150 |
CVE-2023-28155Path to dependency file: /package.json Path to vulnerable library: /package.json Dependency Hierarchy: -> jest-cli-24.9.0.tgz (Root Library) -> jest-config-24.9.0.tgz -> jest-environment-jsdom-24.9.0.tgz -> jsdom-11.12.0.tgz -> ❌ request-2.88.0.tgz (Vulnerable Library) |
Medium |
6.1 | request-2.88.0.tgz | #630 |
Total libraries scanned: 2345
Scan token: af832e2f9ddd498e84b85a5224c058f1