Cventura-10
commented
9 months ago Severity: moderate Memory Exposure in bl - https://github.com/advisories/GHSA-wrw9-m778-g6mc Remote Memory Exposure in bl - https://github.com/advisories/GHSA-pp7h-53gx-mx7r No fix available node_modules/levelup/node_modules/bl levelup 0.9.0 - 1.0.0-5 Depends on vulnerable versions of bl Depends on vulnerable versions of semver node_modules/levelup browserify-fs * Depends on vulnerable versions of levelup node_modules/browserify-fs
semver <=5.7.1 Severity: high Regular Expression Denial of Service in semver - https://github.com/advisories/GHSA-x6fg-f45m-jf5q semver vulnerable to Regular Expression Denial of Service - https://github.com/advisories/GHSA-c2qf-rxjj-qqgw No fix available node_modules/levelup/node_modules/semver
4 vulnerabilities (1 moderate, 3 high)
Some issues need review, and may require choosing a different dependency. carlosventura@server seus-gama % npm install
up to date, audited 751 packages in 2s
134 packages are looking for funding
run npm fund for details
4 vulnerabilities (1 moderate, 3 high)
Some issues need review, and may require choosing a different dependency.
Warning!
applikef / applifun Known security vulnerabilities detected
Dependency nth-check
Version < 2.0.1 Upgrade to ~> 2.0.1 Defined in package-lock.json Vulnerabilities CVE-2021-3803 High severity Dependency postcss Version < 8.4.31
Upgrade to ~> 8.4.31 Defined in package-lock.json Vulnerabilities CVE-2023-44270 Moderate severity Dependency @adobe/css-tools
Version < 4.3.2 Upgrade to ~> 4.3.2 Defined in package-lock.json