-
## Describe the bug
@stoplight/elements depends on json-schema-generator, which uses the legacy optimist package. optimist is vulnerable to [CVE-2020-7598](https://github.com/advisories/GHSA-vh95-r…
-
Primordials are a way we use to add robustness to certain areas in our code and there has been a lot of debate about whether or not the issues they create regarding performance and ease of contributio…
-
## CVE-2018-16487 - Medium Severity Vulnerability
Vulnerable Library - lodash-2.4.2.tgz
A utility library delivering consistency, customization, performance, & extras.
Library home page: https://reg…
-
## CVE-2021-3918 - Critical Severity Vulnerability
Vulnerable Library - json-schema-0.2.3.tgz
JSON Schema validation and specifications
Library home page: https://registry.npmjs.org/json-schema/-/js…
-
## CVE-2019-10744 - Critical Severity Vulnerability
Vulnerable Libraries - lodash.merge-3.3.2.tgz, lodash-4.17.4.tgz
lodash.merge-3.3.2.tgz
The modern build of lodash’s `_.merge` as a module.
Libr…
-
## CVE-2021-3918 - Critical Severity Vulnerability
Vulnerable Library - json-schema-0.2.3.tgz
JSON Schema validation and specifications
Library home page: https://registry.npmjs.org/json-schema/-/js…
-
**Vulnerabilities**
DepShield reports that this application's usage of [lodash:1.0.2](https://ossindex.sonatype.org/component/pkg:npm/lodash@1.0.2) results in the following vulnerability(s):
- (CVSS…
-
## CVE-2021-23383 - Medium Severity Vulnerability
Vulnerable Library - handlebars-4.1.2.min.js
Handlebars provides the power necessary to let you build semantic templates effectively with no frustra…
-
## CVE-2021-23383 - Medium Severity Vulnerability
Vulnerable Library - handlebars-4.1.2.tgz
Handlebars provides the power necessary to let you build semantic templates effectively with no frustratio…
-
## CVE-2020-7720 - Critical Severity Vulnerability
Vulnerable Library - node-forge-0.7.5.tgz
JavaScript implementations of network transports, cryptography, ciphers, PKI, message digests, and variou…