-
Dear Team
In our product the **high security vulnerability** has been reported due to the nested sub-package dicer 0.2.5 even in the latest version (1.4.4) of multer. Would you please help to check…
-
**_Reported by Mark Linkmeyer:_**
See Summary
(Imported from Jira ZEP-1296)
-
Improper Neutralization of Special Elements used in a Command in Shell-quote
Need to update to react-dev-utils 12.0.1 to fix this issue, I can set up a PR if needed
-
**Project Details:**
We currently perform only code quality check on Coverage using sonarcloud.
Code security is an important aspect using which we will be able to identify security issues an…
-
Dear,
I hope you well, and safe!
I need help with the Level Up extension.
Here at the company, we have identified that an end user has installed the Level Up extension on his machine, and eve…
-
**Is your feature request related to a problem? Please describe.**
A clear and concise description of what the problem is. Ex. I'm always frustrated when [...]
**Describe the solution you'd like**…
-
There is a `Axios Cross-Site Request Forgery Vulnerability` dependency in the `@analytics/segment` plugin.
Dependabot is stating: `@analytics/segment@1.1.3 requires axios@^0.21.1 via a transitive …
-
**Github username:** --
**Twitter username:** --
**Submission hash (on-chain):** 0xb7a4471705bda0fd626c68ad3782aa902cc1442e214e8d3e1d401b72bbee6da2
**Severity:** low
**Description:**
**Description**…
-
### What happens?
A command injection vulnerability exists in the GitHub Actions workflow. The workflow may execute unintended commands on the GitHub Actions runner when an issue is created or edit…
-
We have been unsuccessfully trying to contact the repository owners since 2020-11-30.
The issue affects `master`, `Janglee123-patch-2`, `Janglee123-patch-1` and `revert-83-master` branches.
## Sum…