search

CloudBoost / cloudboost

Realtime JavaScript Backend.
https://www.cloudboost.io
Apache License 2.0
1.44k stars 152 forks source link

[Snyk] Fix for 26 vulnerabilities #643

Open nawazdhandala opened 2 months ago

nawazdhandala commented 2 months ago

snyk-top-banner

Snyk has created this PR to fix 26 vulnerabilities in the npm dependencies of this project.

Snyk changed the following file(s):

Vulnerabilities that will be fixed with an upgrade:

Issue Score
high severity Open Redirect
npm:url-parse:20180731		   761  
high severity Regular Expression Denial of Service (ReDoS)
SNYK-JS-WEBSOCKETEXTENSIONS-570623		   731  
high severity Improper Input Validation
SNYK-JS-URLPARSE-2407770		   726  
high severity Improper Input Validation
SNYK-JS-URLPARSE-543307		   726  
high severity Prototype Poisoning
SNYK-JS-QS-3153490		   696  
high severity Regular Expression Denial of Service (ReDoS)
SNYK-JS-UAPARSERJS-1023599		   696  
high severity Regular Expression Denial of Service (ReDoS)
SNYK-JS-UAPARSERJS-610226		   696  
high severity Improper Input Validation
SNYK-JS-FOLLOWREDIRECTS-6141137		   686  
medium severity Information Exposure
SNYK-JS-EVENTSOURCE-2823375		   646  
medium severity Information Exposure
SNYK-JS-FOLLOWREDIRECTS-6444610		   646  
medium severity Denial of Service (DoS)
SNYK-JS-HTTPPROXY-569139		   646  
medium severity Access Restriction Bypass
SNYK-JS-URLPARSE-2401205		   641  
medium severity Authorization Bypass
SNYK-JS-URLPARSE-2407759		   641  
medium severity Authorization Bypass Through User-Controlled Key
SNYK-JS-URLPARSE-2412697		   631  
medium severity Regular Expression Denial of Service (ReDoS)
SNYK-JS-UAPARSERJS-1072471		   616  
medium severity Information Exposure
SNYK-JS-FOLLOWREDIRECTS-2332181		   586  
medium severity Denial of Service (DoS)
SNYK-JS-SOCKJS-575261		   586  
medium severity Open Redirect
SNYK-JS-URLPARSE-1533425		   586  
medium severity Regular Expression Denial of Service (ReDoS)
npm:ua-parser-js:20180227		   586  
high severity Prototype Override
npm:querystringify:20180419		   584  
medium severity Information Exposure
SNYK-JS-NODEFETCH-2342118		   539  
medium severity Denial of Service
SNYK-JS-NODEFETCH-674311		   520  
medium severity Open Redirect
SNYK-JS-EXPRESS-6474509		   519  
low severity Prototype Pollution
SNYK-JS-MINIMIST-2429795		   506  
medium severity Improper Input Validation
SNYK-JS-URLPARSE-1078283		   479  
low severity Information Exposure
SNYK-JS-FOLLOWREDIRECTS-2396346		   344  

[!IMPORTANT]

  • Check the changes in this PR to ensure they won't cause issues with your project.
  • Max score is 1000. Note that the real score may have changed since the PR was raised.
  • This PR was automatically created by Snyk using the credentials of a real user.

Note: You are seeing this because you or someone else with access to this repository has authorized Snyk to open fix PRs.

For more information: 🧐 View latest project report πŸ“œ Customise PR templates πŸ›  Adjust project settings πŸ“š Read about Snyk's upgrade logic

Learn how to fix vulnerabilities with free interactive lessons:

πŸ¦‰ Open Redirect πŸ¦‰ Improper Input Validation πŸ¦‰ Denial of Service (DoS) πŸ¦‰ More lessons are available in Snyk Learn