-
Trying to aggregate the various issues into one to collect feedback.
I invite everyone to read the [SponsorLink announcement](https://www.cazzulino.com/sponsorlink.html) to understand the intention…
-
Snyk has created this PR to fix one or more vulnerable packages in the `npm` dependencies of this project.
#### Changes included in this PR
- Changes to the following files to upgrade the vulnerab…
-
Type: Bug
After update of VSCode to version 1.90.0, holding the mouse on some links cause VSCode to crash. One example of this that is ALWAYS crashing for me is by holding the mouse on the "Editor …
-
There are several instances where you might legitimately want to include a package with a security advisory in your project. Quite often, upgrading to a newer secure version of a package may be diffic…
-
Hi there,
I can see in this repo, `docs/products/snyk-open-source/language-and-package-manager-support/snyk-for-javascript/snyk-for-npm.md` says:
> Snyk currently does not support v3 lockfiles.
…
-
This PR was automatically created by Snyk using the credentials of a real user.Snyk has created this PR to fix one or more vulnerable packages in the `npm` dependencies of this project.
#### Change…
-
Vulnerable Library - body-parser-1.9.0.tgz
Path to dependency file: /package.json
Path to vulnerable library: /node_modules/qs/package.json
Found in HEAD commit: da47719753959d0828901e4fc615a2a8…
-
I have deployed defectDojo to openshift cluster via helm chart. I have started using it and things seems good but (I have created products, engagement,..etc through the web app). as I navigate to one …
-
There's a related discussion on Reddit: https://www.reddit.com/r/dotnet/comments/15ljdcc/does_moq_in_its_latest_version_extract_and_send/
It seems that starting from version 4.20, SponsorLink is in…
-
System info: Fedora 39
Kernel: 6.6.8-200.fc39.x86_64
DE: Plasma 5.27.10
Codium: 1.85.1.23348
The app hangs after 2-5 seconds after startup, and never responds to any input again. The window titl…