fix(deps): update dependency semver to v7.6.0 #569
Merged
Wiz Inc. (48d099cbad) / Wiz Vulnerability Scanner
completed
Feb 8, 2024 in 2s
Wiz Vulnerability Scanner
Alakazam, Lord of Logging Legends! 📜
Wiz's mystical ink scripted tales of revelation upon this PR's pages. 🖋️📜
Exposing Vulnerabilities with Wiz 🪄
🔮 Vulnerabilities Detected: 3
― Note from Wiz: "Every line you write is a whisper of code magic - keep the incantations flowing! 🪄📝🔮"
Annotations
Check warning on line 1 in package-lock.json
wiz-inc-48d099cbad / Wiz Vulnerability Scanner
xml2js:0.4.23
Detected Vulnerabilities:
CVE-2023-0842, Severity: Medium, Source: https://github.com/advisories/GHSA-776f-qx25-q3cc
CVSS score: 5.3, CVSS exploitability score: 3.9
🩹 Fixed version: 0.5.0
💥 Has public exploit
🧨 Has CISA KEV exploit
Check warning on line 1 in package-lock.json
wiz-inc-48d099cbad / Wiz Vulnerability Scanner
tough-cookie:3.0.1
Detected Vulnerabilities:
CVE-2023-26136, Severity: Medium, Source: https://github.com/advisories/GHSA-72xf-g2v4-qvf3
CVSS score: 9.8, CVSS exploitability score: 3.9
🩹 Fixed version: 4.1.3
💥 Has public exploit
🧨 Has CISA KEV exploit
Check warning on line 1 in package-lock.json
wiz-inc-48d099cbad / Wiz Vulnerability Scanner
semver:6.3.0
Detected Vulnerabilities:
CVE-2022-25883, Severity: Medium, Source: https://github.com/advisories/GHSA-c2qf-rxjj-qqgw
CVSS score: 7.5, CVSS exploitability score: 3.9
🩹 Fixed version: 6.3.1
💥 Has public exploit
🧨 Has CISA KEV exploit
Loading