search

redhat-developer / vscode-openshift-tools

OpenShift extension for Visual Studio Code
https://marketplace.visualstudio.com/items?itemName=redhat.vscode-openshift-connector
MIT License
93 stars 59 forks source link

[build] Fix vulnerability in path-to-regexp >=0.2.0 <=7.2.0 #4449

Closed vrubezhny closed 3 weeks ago

vrubezhny commented 3 weeks ago 
path-to-regexp  0.2.0 - 7.2.0
Severity: high
path-to-regexp outputs backtracking regular expressions - https://github.com/advisories/GHSA-9wv6-86v2-598j
fix available via `npm audit fix`
node_modules/nise/node_modules/path-to-regexp
  nise  <=6.0.0
  Depends on vulnerable versions of path-to-regexp
  node_modules/nise
codecov-commenter commented 3 weeks ago

Codecov Report

All modified and coverable lines are covered by tests :white_check_mark:

Project coverage is 43.53%. Comparing base (da60441) to head (3763e03). Report is 501 commits behind head on main.

Additional details and impacted files ```diff @@ Coverage Diff @@ ## main #4449 +/- ## =========================================== + Coverage 32.37% 43.53% +11.16% =========================================== Files 85 98 +13 Lines 6505 8002 +1497 Branches 1349 1703 +354 =========================================== + Hits 2106 3484 +1378 - Misses 4399 4518 +119 ```

:umbrella: View full report in Codecov by Sentry.
:loudspeaker: Have feedback on the report? Share it here.