Open twilio-product-security opened 1 year ago
(*) Note that the real score may have changed since the PR was raised.
Check the changes in this PR to ensure they won't cause issues with your project.
Note: You are seeing this because you or someone else with access to this repository has authorized Snyk to open fix PRs.
For more information: 🧐 View latest project report
🛠 Adjust project settings
📚 Read more about Snyk's upgrade and patch logic
Learn how to fix vulnerabilities with free interactive lessons:
🦉 Regular Expression Denial of Service (ReDoS) 🦉 Regular Expression Denial of Service (ReDoS) 🦉 Regular Expression Denial of Service (ReDoS) 🦉 More lessons are available in Snyk Learn
Snyk has created this PR to fix one or more vulnerable packages in the `npm` dependencies of this project.
Changes included in this PR
Vulnerabilities that will be fixed
With an upgrade:
Why? Proof of Concept exploit, Has a fix available, CVSS 7.5
SNYK-JS-AXIOS-1579269
Why? Proof of Concept exploit, Has a fix available, CVSS 7.5
SNYK-JS-ENGINEIO-1056749
Why? Has a fix available, CVSS 5.4
SNYK-JS-GOT-2932019
Why? Proof of Concept exploit, Has a fix available, CVSS 5.3
SNYK-JS-JSZIP-1251497
Why? Proof of Concept exploit, Has a fix available, CVSS 3.7
SNYK-JS-MINIMIST-2429795
Why? Proof of Concept exploit, Has a fix available, CVSS 7.5
SNYK-JS-PARSELINKHEADER-1582783
Why? Proof of Concept exploit, Has a fix available, CVSS 9.4
SNYK-JS-SEQUELIZE-2932027
Why? Has a fix available, CVSS 7
SNYK-JS-SEQUELIZE-2959225
Why? Proof of Concept exploit, Has a fix available, CVSS 7.1
SNYK-JS-SHELLJS-2332187
Why? Proof of Concept exploit, Recently disclosed, Has a fix available, CVSS 6.4
SNYK-JS-SNYK-3037342
Why? Proof of Concept exploit, Recently disclosed, Has a fix available, CVSS 6.4
SNYK-JS-SNYKGOPLUGIN-3037316
Why? Proof of Concept exploit, Has a fix available, CVSS 7.5
SNYK-JS-SQLITE3-2388645
Why? Has a fix available, CVSS 7.5
SNYK-JS-SSH2-1656673
Why? Proof of Concept exploit, Has a fix available, CVSS 5.3
SNYK-JS-VALIDATOR-1090599
Why? Proof of Concept exploit, Has a fix available, CVSS 5.3
SNYK-JS-VALIDATOR-1090600
Why? Proof of Concept exploit, Has a fix available, CVSS 5.3
SNYK-JS-VALIDATOR-1090601
Why? Proof of Concept exploit, Has a fix available, CVSS 5.3
SNYK-JS-VALIDATOR-1090602
(*) Note that the real score may have changed since the PR was raised.
Commit messages
Package name: @nestjs/cli
The new version differs by 250 commits.Package name: sequelize
The new version differs by 250 commits.Check the changes in this PR to ensure they won't cause issues with your project.
Note: You are seeing this because you or someone else with access to this repository has authorized Snyk to open fix PRs.
For more information: 🧐 View latest project report
🛠 Adjust project settings
📚 Read more about Snyk's upgrade and patch logic
Learn how to fix vulnerabilities with free interactive lessons:
🦉 Regular Expression Denial of Service (ReDoS) 🦉 Regular Expression Denial of Service (ReDoS) 🦉 Regular Expression Denial of Service (ReDoS) 🦉 More lessons are available in Snyk Learn