search

CloudBoost / cloudboost

Realtime JavaScript Backend.
https://www.cloudboost.io
Apache License 2.0
1.44k stars 152 forks source link

[Snyk] Fix for 29 vulnerabilities #642

Open nawazdhandala opened 2 months ago

nawazdhandala commented 2 months ago

snyk-top-banner

Snyk has created this PR to fix 29 vulnerabilities in the npm dependencies of this project.

Snyk changed the following file(s):

Vulnerabilities that will be fixed with an upgrade:

Issue Score
high severity Prototype Pollution
SNYK-JS-LODASH-567746		   731  
high severity Prototype Pollution
SNYK-JS-LODASHES-2434283		   731  
critical severity Arbitrary Command Injection
npm:macaddress:20180511		   704  
high severity Regular Expression Denial of Service (ReDoS)
SNYK-JS-ANSIREGEX-1583908		   696  
high severity Denial of Service (DoS)
SNYK-JS-DECODEURICOMPONENT-3149970		   696  
high severity Prototype Pollution
SNYK-JS-LODASH-6139239		   696  
high severity Regular Expression Denial of Service (ReDoS)
SNYK-JS-UAPARSERJS-1023599		   696  
high severity Regular Expression Denial of Service (ReDoS)
SNYK-JS-UAPARSERJS-610226		   696  
high severity Prototype Pollution
SNYK-JS-LODASH-450202		   686  
high severity Prototype Pollution
SNYK-JS-LODASH-608086		   686  
high severity Prototype Pollution
SNYK-JS-LODASH-73638		   686  
high severity Prototype Pollution
SNYK-JS-LODASHES-2434285		   686  
high severity Prototype Pollution
SNYK-JS-LODASHES-2434287		   686  
high severity Prototype Pollution
SNYK-JS-LODASHES-2434290		   686  
high severity Code Injection
SNYK-JS-LODASH-1040724		   681  
high severity Code Injection
SNYK-JS-LODASHES-2434284		   681  
medium severity Prototype Pollution
SNYK-JS-JSON5-3182856		   641  
medium severity Regular Expression Denial of Service (ReDoS)
SNYK-JS-UAPARSERJS-1072471		   616  
high severity Prototype Pollution
SNYK-JS-LOADERUTILS-3043105		   589  
medium severity Regular Expression Denial of Service (ReDoS)
SNYK-JS-LODASH-1018905		   586  
medium severity Regular Expression Denial of Service (ReDoS)
SNYK-JS-LODASHES-2434289		   586  
medium severity Regular Expression Denial of Service (ReDoS)
npm:ua-parser-js:20180227		   586  
medium severity Regular Expression Denial of Service (ReDoS)
SNYK-JS-LODASH-73639		   541  
medium severity Regular Expression Denial of Service (ReDoS)
SNYK-JS-LODASHES-2434286		   541  
medium severity Information Exposure
SNYK-JS-NODEFETCH-2342118		   539  
medium severity Denial of Service
SNYK-JS-NODEFETCH-674311		   520  
medium severity Regular Expression Denial of Service (ReDoS)
SNYK-JS-LOADERUTILS-3042992		   479  
medium severity Regular Expression Denial of Service (ReDoS)
SNYK-JS-LOADERUTILS-3105943		   479  
medium severity Arbitrary File Read
SNYK-JS-MACADDRESS-567156		   414  

[!IMPORTANT]

  • Check the changes in this PR to ensure they won't cause issues with your project.
  • Max score is 1000. Note that the real score may have changed since the PR was raised.
  • This PR was automatically created by Snyk using the credentials of a real user.

Note: You are seeing this because you or someone else with access to this repository has authorized Snyk to open fix PRs.

For more information: 🧐 View latest project report 📜 Customise PR templates 🛠 Adjust project settings 📚 Read about Snyk's upgrade logic

Learn how to fix vulnerabilities with free interactive lessons:

🦉 Regular Expression Denial of Service (ReDoS) 🦉 Prototype Pollution 🦉 Code Injection 🦉 More lessons are available in Snyk Learn