-
### Description
✗ Regular Expression Denial of Service (ReDoS) [High Severity][https://snyk.io/vuln/SNYK-JS-ANSIREGEX-1583908] in ansi-regex@3.0.0
lint-staged > listr@0.14.3 > listr-update-rendere…
-
### Describe the bug
(Write your answer here.)
react-script inner dependency /embed module nth-check-1.0.2
https://nvd.nist.gov/vuln/detail/CVE-2021-3803
### Did you try recovering your d…
-
Tracking issue for:
- [ ] https://github.com/2lambda123/cisagov-Malcolm/security/code-scanning/128
-
Hey could we maybe not automatically halt when a major version change is encountered and just log an error instead?
This is the opposite of designing your distributed system to be antifragile.
h…
feld updated
7 months ago
-
Vulnerable Library - torch-1.13.1-cp37-cp37m-manylinux1_x86_64.whl
Tensors and Dynamic neural networks in Python with strong GPU acceleration
Library home page: https://files.pythonhosted.org/packag…
-
Vulnerable Library - Werkzeug-2.2.3-py3-none-any.whl
The comprehensive WSGI web application library.
Library home page: https://files.pythonhosted.org/packages/f6/f8/9da63c1617ae2a1dec2fbf6412f3a0cf…
-
## Questions?
There's a high SYNK vulnerabilty which was introduced through kafka-node@5.0.0 > snappy@6.3.5 > prebuild-install@5.3.0 > npmlog@4.1.2 > gauge@2.7.4 > strip-ansi@3.0.1 > ansi-regex@2.1…
-
**Github username:** --
**Twitter username:** @recursiveAudit
**Submission hash (on-chain):** 0xdc4c563b13ebcebd7a558df1c5dd3a4917e84ab4e51d486623be04def381667c
**Severity:** medium
**Description:**…
-
Outdated `protobuf-java` found in [main/load-test-framework](https://github.com/GoogleCloudPlatform/pubsub/tree/master/load-test-framework):
![Screen Shot 2022-05-11 at 9 32 31 AM](https://user-ima…
-
An outdated version of the `body-parser` dependency has left a vulnerability for a denial of service. Version 1.20.3 resolves this vulnerability, however in numerous platform repositories we have depe…