Open snyk-bot opened 2 years ago
This pull request is being automatically deployed with Vercel (learn more).
To see the status of your deployments, click below or on the icon next to each commit.
π Inspect: https://vercel.com/yurikrupnik/alfred/GeDmi1sudpinLm6eTj6AKP4AgVZn
β
Preview: https://alfred-git-snyk-fix-c95f5891f95da39df35c18f9-7dfc18-yurikrupnik.vercel.app
π Inspect: https://vercel.com/yurikrupnik/batman/GGnD2MdBWg8rAnmvUkxrCU4EiaSj
β
Preview: https://batman-git-snyk-fix-c95f5891f95da39df35c18f9-be6e1a-yurikrupnik.vercel.app
This pull request is being automatically deployed with Vercel (learn more).
To see the status of your deployments, click below or on the icon next to each commit.
π Inspect: https://vercel.com/yurikrupnik/batman/BVjAZRPUbWRwMgczTHBevmQCcczV
β
Preview: In Progress
This vulnerability refers to the ability of an attacker to arbitrarily perform a redirection (external) or forward (internal) against the system. It arises due to insufficient validation or sanitisation of inputs used to perform a redirect or forward and may result in privilege escalation (in the case of a forward) or may be used to launch phishing attacks against users (in the case of redirects).
Snyk has created this PR to fix one or more vulnerable packages in the `npm` dependencies of this project.
Changes included in this PR
Vulnerabilities that will be fixed
With an upgrade:
Why? Proof of Concept exploit, Recently disclosed, Has a fix available, CVSS 5.3
SNYK-JS-NODEFORGE-2330875
Why? Recently disclosed, Has a fix available, CVSS 6.3
SNYK-JS-NODEFORGE-2331908
(*) Note that the real score may have changed since the PR was raised.
Check the changes in this PR to ensure they won't cause issues with your project.
Note: You are seeing this because you or someone else with access to this repository has authorized Snyk to open fix PRs.
For more information:
π§ View latest project report
π Adjust project settings
π Read more about Snyk's upgrade and patch logic