Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

[Snyk] Upgrade mongodb from 3.5.9 to 3.7.4 #5

Open
wants to merge 1 commit into
base: main
Choose a base branch
from
Open

[Snyk] Upgrade mongodb from 3.5.9 to 3.7.4 #5

Show file tree
Hide file tree
Changes from all commits
Commits
Show all changes
1 commit
Select commit
File filter

Filter by extension

Filter by extension
Conversations
Failed to load comments.
Loading
Jump to
Jump to file
Failed to load files.
Loading
Diff view
Diff view
119 changes: 71 additions & 48 deletions package-lock.json
View file
Open in desktop

Some generated files are not rendered by default. Learn more about how customized files appear on GitHub.

2 changes: 1 addition & 1 deletion package.json
View file
Open in desktop
Original file line number Diff line number Diff line change
Expand Up @@ -35,7 +35,7 @@
"marked": "0.3.5",
"method-override": "latest",
"moment": "2.15.1",
"mongodb": "^3.5.9",
"mongodb": "^3.7.4",
Copy link

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

typeorm 0.2.24 / package.json

Total vulnerabilities: 1

Critical: 1 High: 0 Medium: 0 Low: 0
Vulnerability IDSeverityCVSSFixed inStatus
CVE-2020-8158 CRITICAL CRITICAL 9.8 0.2.25 Open

Copy link

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

ansi-regex 4.1.0 / package.json

Total vulnerabilities: 1

Critical: 0 High: 1 Medium: 0 Low: 0
Vulnerability IDSeverityCVSSFixed inStatus
CVE-2021-3807 HIGH HIGH 7.5 4.1.1 Open

Copy link

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

tough-cookie 2.4.3 / package.json

Total vulnerabilities: 1

Critical: 1 High: 0 Medium: 0 Low: 0
Vulnerability IDSeverityCVSSFixed inStatus
CVE-2023-26136 CRITICAL CRITICAL 9.8 4.1.3 Open

Copy link

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

underscore 1.9.1 / package.json

Total vulnerabilities: 1

Critical: 0 High: 1 Medium: 0 Low: 0
Vulnerability IDSeverityCVSSFixed inStatus
CVE-2021-23358 HIGH HIGH 7.2 1.12.1 Open

Copy link

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

uglify-js 3.13.9 / package.json

Total vulnerabilities: 1

Critical: 0 High: 0 Medium: 1 Low: 0
Vulnerability IDSeverityCVSSFixed inStatus
PRISMA-2021-0169 MEDIUM MEDIUM 5.3 3.14.3 Open

Copy link

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

mime 1.2.11 / package.json

Total vulnerabilities: 1

Critical: 0 High: 1 Medium: 0 Low: 0
Vulnerability IDSeverityCVSSFixed inStatus
CVE-2017-16138 HIGH HIGH 7.5 1.4.1 Open

Copy link

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

xml2js 0.4.23 / package.json

Total vulnerabilities: 1

Critical: 0 High: 0 Medium: 1 Low: 0
Vulnerability IDSeverityCVSSFixed inStatus
CVE-2023-0842 MEDIUM MEDIUM 5.3 0.5.0 Open

Copy link

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

st 0.2.4 / package.json

Total vulnerabilities: 1

Critical: 0 High: 0 Medium: 1 Low: 0
Vulnerability IDSeverityCVSSFixed inStatus
CVE-2017-16224 MEDIUM MEDIUM 6.1 - Open

Copy link

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

negotiator 0.2.8 / package.json

Total vulnerabilities: 1

Critical: 0 High: 1 Medium: 0 Low: 0
Vulnerability IDSeverityCVSSFixed inStatus
CVE-2016-10539 HIGH HIGH 7.5 - Open

Copy link

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

validator 13.5.2 / package.json

Total vulnerabilities: 3

Critical: 0 High: 1 Medium: 2 Low: 0
Vulnerability IDSeverityCVSSFixed inStatus
CVE-2021-3765 HIGH HIGH 7.5 13.7.0 Open
GHSA-xx4c-jj58-r7x6 MEDIUM MEDIUM 5.3 13.7.0 Open
PRISMA-2021-0063 MEDIUM MEDIUM 5.3 13.6.0 Open

Copy link

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

tap-mocha-reporter 3.0.9 / package.json

Total vulnerabilities: 2

Critical: 0 High: 1 Medium: 1 Low: 0
Vulnerability IDSeverityCVSSFixed inStatus
PRISMA-2022-0098 HIGH HIGH 8 5.0.2 Open
PRISMA-2022-0097 MEDIUM MEDIUM 5.3 5.0.2 Open

Copy link

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

minimist 1.2.5 / package.json

Total vulnerabilities: 1

Critical: 1 High: 0 Medium: 0 Low: 0
Vulnerability IDSeverityCVSSFixed inStatus
CVE-2021-44906 CRITICAL CRITICAL 9.8 1.2.6 Open

Copy link

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

ansi-regex 3.0.0 / package.json

Total vulnerabilities: 1

Critical: 0 High: 1 Medium: 0 Low: 0
Vulnerability IDSeverityCVSSFixed inStatus
CVE-2021-3807 HIGH HIGH 7.5 4.1.1 Open

Copy link

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

unset-value 1.0.0 / package.json

Total vulnerabilities: 1

Critical: 0 High: 1 Medium: 0 Low: 0
Vulnerability IDSeverityCVSSFixed inStatus
PRISMA-2022-0049 HIGH HIGH 7.5 2.0.1 Open

Copy link

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

minimist 0.0.10 / package.json

Total vulnerabilities: 2

Critical: 1 High: 0 Medium: 1 Low: 0
Vulnerability IDSeverityCVSSFixed inStatus
CVE-2021-44906 CRITICAL CRITICAL 9.8 1.2.6 Open
CVE-2020-7598 MEDIUM MEDIUM 5.6 1.2.2 Open

Copy link

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

set-value 0.4.3 / package.json

Total vulnerabilities: 2

Critical: 2 High: 0 Medium: 0 Low: 0
Vulnerability IDSeverityCVSSFixed inStatus
CVE-2021-23440 CRITICAL CRITICAL 9.8 2.0.1 Open
CVE-2019-10747 CRITICAL CRITICAL 9.8 2.0.1 Open

Copy link

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

y18n 3.2.1 / package.json

Total vulnerabilities: 1

Critical: 1 High: 0 Medium: 0 Low: 0
Vulnerability IDSeverityCVSSFixed inStatus
CVE-2020-7774 CRITICAL CRITICAL 9.8 3.2.2 Open

Copy link

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

qs 2.2.4 / package.json

Total vulnerabilities: 2

Critical: 0 High: 2 Medium: 0 Low: 0
Vulnerability IDSeverityCVSSFixed inStatus
CVE-2017-1000048 HIGH HIGH 7.5 6.0.4 Open
CVE-2022-24999 HIGH HIGH 7.5 6.10.3 Open

Copy link

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

request 2.88.0 / package.json

Total vulnerabilities: 1

Critical: 0 High: 0 Medium: 1 Low: 0
Vulnerability IDSeverityCVSSFixed inStatus
CVE-2023-28155 MEDIUM MEDIUM 6.1 - Open

Copy link

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

uglify-js 2.8.29 / package.json

Total vulnerabilities: 1

Critical: 0 High: 0 Medium: 1 Low: 0
Vulnerability IDSeverityCVSSFixed inStatus
PRISMA-2021-0169 MEDIUM MEDIUM 5.3 3.14.3 Open

Copy link

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

qs 6.5.2 / package.json

Total vulnerabilities: 1

Critical: 0 High: 1 Medium: 0 Low: 0
Vulnerability IDSeverityCVSSFixed inStatus
CVE-2022-24999 HIGH HIGH 7.5 6.10.3 Open

Copy link

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

istanbul-reports 1.4.0 / package.json

Total vulnerabilities: 1

Critical: 0 High: 0 Medium: 1 Low: 0
Vulnerability IDSeverityCVSSFixed inStatus
PRISMA-2022-0005 MEDIUM MEDIUM 5.3 3.1.3 Open

Copy link

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

hosted-git-info 2.6.0 / package.json

Total vulnerabilities: 1

Critical: 0 High: 0 Medium: 1 Low: 0
Vulnerability IDSeverityCVSSFixed inStatus
CVE-2021-23362 MEDIUM MEDIUM 5.3 2.8.9 Open

Copy link

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

minimist 0.0.8 / package.json

Total vulnerabilities: 2

Critical: 1 High: 0 Medium: 1 Low: 0
Vulnerability IDSeverityCVSSFixed inStatus
CVE-2021-44906 CRITICAL CRITICAL 9.8 1.2.6 Open
CVE-2020-7598 MEDIUM MEDIUM 5.6 1.2.2 Open

Copy link

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

set-value 2.0.0 / package.json

Total vulnerabilities: 2

Critical: 2 High: 0 Medium: 0 Low: 0
Vulnerability IDSeverityCVSSFixed inStatus
CVE-2021-23440 CRITICAL CRITICAL 9.8 2.0.1 Open
CVE-2019-10747 CRITICAL CRITICAL 9.8 2.0.1 Open

Copy link

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

semver 5.5.0 / package.json

Total vulnerabilities: 1

Critical: 0 High: 1 Medium: 0 Low: 0
Vulnerability IDSeverityCVSSFixed inStatus
CVE-2022-25883 HIGH HIGH 7.5 7.5.2 Open

Copy link

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

mem 1.1.0 / package.json

Total vulnerabilities: 1

Critical: 0 High: 0 Medium: 1 Low: 0
Vulnerability IDSeverityCVSSFixed inStatus
GHSA-4xcv-9jjx-gfj3 MEDIUM MEDIUM 5.1 4.0.0 Open

Copy link

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

lodash 4.17.10 / package.json

Total vulnerabilities: 6

Critical: 1 High: 2 Medium: 3 Low: 0
Vulnerability IDSeverityCVSSFixed inStatus
CVE-2019-10744 CRITICAL CRITICAL 9.1 4.17.12 Open
CVE-2021-23337 HIGH HIGH 7.2 4.17.21 Open
CVE-2020-8203 HIGH HIGH 7.4 4.17.20 Open
CVE-2020-28500 MEDIUM MEDIUM 5.3 4.17.21 Open
CVE-2019-1010266 MEDIUM MEDIUM 6.5 4.17.11 Open
CVE-2018-16487 MEDIUM MEDIUM 5.6 4.17.11 Open

Copy link

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

mixin-deep 1.3.1 / package.json

Total vulnerabilities: 1

Critical: 1 High: 0 Medium: 0 Low: 0
Vulnerability IDSeverityCVSSFixed inStatus
CVE-2019-10746 CRITICAL CRITICAL 9.8 1.3.2 Open

Copy link

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

path-parse 1.0.5 / package.json

Total vulnerabilities: 1

Critical: 0 High: 1 Medium: 0 Low: 0
Vulnerability IDSeverityCVSSFixed inStatus
CVE-2021-23343 HIGH HIGH 7.5 1.0.7 Open

Copy link

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

kind-of 6.0.2 / package.json

Total vulnerabilities: 1

Critical: 0 High: 1 Medium: 0 Low: 0
Vulnerability IDSeverityCVSSFixed inStatus
CVE-2019-20149 HIGH HIGH 7.5 6.0.3 Open

Copy link

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

negotiator 0.4.9 / package.json

Total vulnerabilities: 1

Critical: 0 High: 1 Medium: 0 Low: 0
Vulnerability IDSeverityCVSSFixed inStatus
CVE-2016-10539 HIGH HIGH 7.5 - Open

Copy link

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

ms 0.7.3 / package.json

Total vulnerabilities: 1

Critical: 0 High: 0 Medium: 1 Low: 0
Vulnerability IDSeverityCVSSFixed inStatus
CVE-2017-20162 MEDIUM MEDIUM 5.3 2.0.0 Open

Copy link

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

semver 1.1.4 / package.json

Total vulnerabilities: 2

Critical: 0 High: 2 Medium: 0 Low: 0
Vulnerability IDSeverityCVSSFixed inStatus
CVE-2015-8855 HIGH HIGH 7.5 4.3.2 Open
CVE-2022-25883 HIGH HIGH 7.5 7.5.2 Open

Copy link

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

handlebars 4.0.11 / package.json

Total vulnerabilities: 10

Critical: 3 High: 6 Medium: 1 Low: 0
Vulnerability IDSeverityCVSSFixed inStatus
CVE-2019-19919 CRITICAL CRITICAL 9.8 4.3.0 Open
CVE-2021-23383 CRITICAL CRITICAL 9.8 4.7.7 Open
CVE-2021-23369 CRITICAL CRITICAL 9.8 4.7.7 Open
GHSA-q42p-pg8m-cqh6 HIGH HIGH 7.3 4.0.14 Open
CVE-2019-20922 HIGH HIGH 7.5 4.4.5 Open
CVE-2019-20920 HIGH HIGH 8.1 4.5.3 Open
GHSA-2cf5-4w76-r9qv HIGH HIGH 7 4.5.2 Open
GHSA-g9r4-xpmj-mj65 HIGH HIGH 7 4.5.3 Open
GHSA-q2c6-c6pm-g3gh HIGH HIGH 7 4.5.3 Open
GHSA-f52g-6jhx-586p MEDIUM MEDIUM 4 4.4.5 Open

Copy link

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

mquery 1.6.3 / package.json

Total vulnerabilities: 2

Critical: 0 High: 1 Medium: 1 Low: 0
Vulnerability IDSeverityCVSSFixed inStatus
PRISMA-2021-0060 HIGH HIGH - 3.2.5 Open
CVE-2020-35149 MEDIUM MEDIUM 5.3 3.2.3 Open

Copy link

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

mpath 0.1.1 / package.json

Total vulnerabilities: 2

Critical: 1 High: 1 Medium: 0 Low: 0
Vulnerability IDSeverityCVSSFixed inStatus
CVE-2021-23438 CRITICAL CRITICAL 9.8 0.8.4 Open
CVE-2018-16490 HIGH HIGH 7.5 0.5.1 Open

Copy link

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

npmconf 0.0.24 / package.json

Total vulnerabilities: 1

Critical: 0 High: 0 Medium: 1 Low: 0
Vulnerability IDSeverityCVSSFixed inStatus
GHSA-57cf-349j-352g MEDIUM MEDIUM 4 2.1.3 Open

Copy link

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

decode-uri-component 0.2.0 / package.json

Total vulnerabilities: 2

Critical: 0 High: 1 Medium: 1 Low: 0
Vulnerability IDSeverityCVSSFixed inStatus
CVE-2022-38900 HIGH HIGH 7.5 0.2.1 Open
CVE-2022-38778 MEDIUM MEDIUM 6.5 0.2.1 Open

Copy link

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

mongodb 2.0.46 / package.json

Total vulnerabilities: 1

Critical: 0 High: 1 Medium: 0 Low: 0
Vulnerability IDSeverityCVSSFixed inStatus
GHSA-mh5c-679w-hh4r HIGH HIGH 7 3.1.13 Open

Copy link

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

qs 2.4.2 / package.json

Total vulnerabilities: 2

Critical: 0 High: 2 Medium: 0 Low: 0
Vulnerability IDSeverityCVSSFixed inStatus
CVE-2017-1000048 HIGH HIGH 7.5 6.0.4 Open
CVE-2022-24999 HIGH HIGH 7.5 6.10.3 Open

Copy link

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

jquery 2.2.4 / package.json

Total vulnerabilities: 5

Critical: 0 High: 0 Medium: 5 Low: 0
Vulnerability IDSeverityCVSSFixed inStatus
CVE-2020-23064 MEDIUM MEDIUM 6.1 3.5.0 Open
CVE-2015-9251 MEDIUM MEDIUM 6.1 3.0.0 Open
CVE-2020-11023 MEDIUM MEDIUM 6.9 3.5.0 Open
CVE-2020-11022 MEDIUM MEDIUM 6.9 3.5.0 Open
CVE-2019-11358 MEDIUM MEDIUM 6.1 3.4.0 Open

Copy link

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

mime 1.3.4 / package.json

Total vulnerabilities: 1

Critical: 0 High: 1 Medium: 0 Low: 0
Vulnerability IDSeverityCVSSFixed inStatus
CVE-2017-16138 HIGH HIGH 7.5 1.4.1 Open

Copy link

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

ms 0.7.1 / package.json

Total vulnerabilities: 1

Critical: 0 High: 0 Medium: 1 Low: 0
Vulnerability IDSeverityCVSSFixed inStatus
CVE-2017-20162 MEDIUM MEDIUM 5.3 2.0.0 Open

Copy link

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

lodash 4.17.4 / package.json

Total vulnerabilities: 7

Critical: 1 High: 2 Medium: 4 Low: 0
Vulnerability IDSeverityCVSSFixed inStatus
CVE-2019-10744 CRITICAL CRITICAL 9.1 4.17.12 Open
CVE-2021-23337 HIGH HIGH 7.2 4.17.21 Open
CVE-2020-8203 HIGH HIGH 7.4 4.17.20 Open
CVE-2020-28500 MEDIUM MEDIUM 5.3 4.17.21 Open
CVE-2019-1010266 MEDIUM MEDIUM 6.5 4.17.11 Open
CVE-2018-3721 MEDIUM MEDIUM 6.5 4.17.5 Open
CVE-2018-16487 MEDIUM MEDIUM 5.6 4.17.11 Open

Copy link

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

async 2.6.3 / package.json

Total vulnerabilities: 1

Critical: 0 High: 1 Medium: 0 Low: 0
Vulnerability IDSeverityCVSSFixed inStatus
CVE-2021-43138 HIGH HIGH 7.8 2.6.4 Open

Copy link

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

mongoose 4.2.4 / package.json

Total vulnerabilities: 5

Critical: 3 High: 1 Medium: 1 Low: 0
Vulnerability IDSeverityCVSSFixed inStatus
CVE-2022-2564 CRITICAL CRITICAL 9.8 6.4.6 Open
CVE-2019-17426 CRITICAL CRITICAL 9.1 - Open
CVE-2023-3696 CRITICAL CRITICAL 9.8 5.13.20 Open
PRISMA-2021-0067 HIGH HIGH - 5.12.2 Open
GHSA-r5xw-q988-826m MEDIUM MEDIUM 5.1 4.3.6 Open

Copy link

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

express-fileupload 0.0.5 / package.json

Total vulnerabilities: 4

Critical: 1 High: 2 Medium: 0 Low: 1
Vulnerability IDSeverityCVSSFixed inStatus
CVE-2020-7699 CRITICAL CRITICAL 9.8 1.1.9 Open
PRISMA-2022-0318 HIGH HIGH 7.5 1.1.6-alpha.6 Open
PRISMA-2022-0323 HIGH HIGH 7.5 1.0.0 Open
GHSA-q3w9-g74q-vp5f LOW LOW 1 1.1.6-alpha.6 Open

Copy link

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

highlight.js 9.18.1 / package.json

Total vulnerabilities: 2

Critical: 0 High: 1 Medium: 1 Low: 0
Vulnerability IDSeverityCVSSFixed inStatus
CVE-2020-26237 HIGH HIGH 8.7 9.18.2 Open
GHSA-7wwv-vh3v-89cq MEDIUM MEDIUM 4 10.4.1 Open

Copy link

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

negotiator 0.5.3 / package.json

Total vulnerabilities: 1

Critical: 0 High: 1 Medium: 0 Low: 0
Vulnerability IDSeverityCVSSFixed inStatus
CVE-2016-10539 HIGH HIGH 7.5 - Open

Copy link

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

handlebars 4.0.14 / package.json

Total vulnerabilities: 9

Critical: 3 High: 5 Medium: 1 Low: 0
Vulnerability IDSeverityCVSSFixed inStatus
CVE-2019-19919 CRITICAL CRITICAL 9.8 4.3.0 Open
CVE-2021-23383 CRITICAL CRITICAL 9.8 4.7.7 Open
CVE-2021-23369 CRITICAL CRITICAL 9.8 4.7.7 Open
CVE-2019-20922 HIGH HIGH 7.5 4.4.5 Open
CVE-2019-20920 HIGH HIGH 8.1 4.5.3 Open
GHSA-2cf5-4w76-r9qv HIGH HIGH 7 4.5.2 Open
GHSA-g9r4-xpmj-mj65 HIGH HIGH 7 4.5.3 Open
GHSA-q2c6-c6pm-g3gh HIGH HIGH 7 4.5.3 Open
GHSA-f52g-6jhx-586p MEDIUM MEDIUM 4 4.4.5 Open

Copy link

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

file-type 8.1.0 / package.json

Total vulnerabilities: 1

Critical: 0 High: 0 Medium: 1 Low: 0
Vulnerability IDSeverityCVSSFixed inStatus
CVE-2022-36313 MEDIUM MEDIUM 5.5 16.5.4 Open

Copy link

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

minimatch 3.0.4 / package.json

Total vulnerabilities: 1

Critical: 0 High: 1 Medium: 0 Low: 0
Vulnerability IDSeverityCVSSFixed inStatus
CVE-2022-3517 HIGH HIGH 7.5 3.0.5 Open

Copy link

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

hbs 4.0.4 / package.json

Total vulnerabilities: 1

Critical: 0 High: 0 Medium: 1 Low: 0
Vulnerability IDSeverityCVSSFixed inStatus
CVE-2021-32822 MEDIUM MEDIUM 4 - Open

Copy link

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

fresh 0.2.4 / package.json

Total vulnerabilities: 1

Critical: 0 High: 1 Medium: 0 Low: 0
Vulnerability IDSeverityCVSSFixed inStatus
CVE-2017-16119 HIGH HIGH 7.5 0.5.2 Open

Copy link

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

moment 2.15.1 / package.json

Total vulnerabilities: 2

Critical: 0 High: 2 Medium: 0 Low: 0
Vulnerability IDSeverityCVSSFixed inStatus
CVE-2022-24785 HIGH HIGH 7.5 2.29.2 Open
CVE-2017-18214 HIGH HIGH 7.5 2.19.3 Open

Copy link

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

ini 1.1.0 / package.json

Total vulnerabilities: 1

Critical: 1 High: 0 Medium: 0 Low: 0
Vulnerability IDSeverityCVSSFixed inStatus
CVE-2020-7788 CRITICAL CRITICAL 9.8 1.3.6 Open

Copy link

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

marked 0.3.5 / package.json

Total vulnerabilities: 6

Critical: 0 High: 3 Medium: 3 Low: 0
Vulnerability IDSeverityCVSSFixed inStatus
CVE-2017-16114 HIGH HIGH 7.5 0.3.9 Open
CVE-2022-21681 HIGH HIGH 7.5 4.0.10 Open
CVE-2022-21680 HIGH HIGH 7.5 4.0.10 Open
CVE-2017-1000427 MEDIUM MEDIUM 6.1 0.3.7 Open
CVE-2016-10531 MEDIUM MEDIUM 6.1 - Open
PRISMA-2021-0013 MEDIUM MEDIUM - 1.1.1 Open

Copy link

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

kerberos 0.0.24 / package.json

Total vulnerabilities: 1

Critical: 0 High: 1 Medium: 0 Low: 0
Vulnerability IDSeverityCVSSFixed inStatus
CVE-2020-13110 HIGH HIGH 7.8 1.0.0 Open

"mongoose": "4.2.4",
"morgan": "latest",
"ms": "^0.7.1",
Expand Down