Comments (3)
alekseynemiro
commented on July 22, 2024
npm audit
# npm audit report
fast-xml-parser <4.2.4
Severity: high
fast-xml-parser vulnerable to Regex Injection via Doctype Entities - https://github.com/advisories/GHSA-6w63-h3fj-q4vw
fix available via `npm audit fix`
node_modules/fast-xml-parser
semver <=5.7.1 || 6.0.0 - 6.3.0 || 7.0.0 - 7.5.1
Severity: moderate
semver vulnerable to Regular Expression Denial of Service - https://github.com/advisories/GHSA-c2qf-rxjj-qqgw
semver vulnerable to Regular Expression Denial of Service - https://github.com/advisories/GHSA-c2qf-rxjj-qqgw
semver vulnerable to Regular Expression Denial of Service - https://github.com/advisories/GHSA-c2qf-rxjj-qqgw
fix available via `npm audit fix`
node_modules/@babel/register/node_modules/semver
node_modules/@mapbox/node-pre-gyp/node_modules/semver
node_modules/@npmcli/fs/node_modules/semver
node_modules/@opentelemetry/instrumentation/node_modules/semver
node_modules/@react-native-community/cli-clean/node_modules/semver
node_modules/@react-native-community/cli-doctor/node_modules/cross-spawn/node_modules/semver
node_modules/@react-native-community/cli-platform-android/node_modules/semver
node_modules/@react-native-community/cli-platform-ios/node_modules/semver
node_modules/@react-native-community/cli-plugin-metro/node_modules/semver
node_modules/@react-native-community/cli/node_modules/cross-spawn/node_modules/semver
node_modules/@react-native-windows/cli/node_modules/semver
node_modules/@typescript-eslint/eslint-plugin/node_modules/semver
node_modules/@typescript-eslint/typescript-estree/node_modules/semver
node_modules/@typescript-eslint/utils/node_modules/semver
node_modules/async-listener/node_modules/semver
node_modules/cls-hooked/node_modules/semver
node_modules/diagnostic-channel/node_modules/semver
node_modules/find-cache-dir/node_modules/semver
node_modules/jest-snapshot/node_modules/semver
node_modules/node-abi/node_modules/semver
node_modules/node-gyp/node_modules/semver
node_modules/semver
node_modules/ts-jest/node_modules/semver
node_modules/username/node_modules/semver
word-wrap <1.2.4
Severity: moderate
word-wrap vulnerable to Regular Expression Denial of Service - https://github.com/advisories/GHSA-j8xg-fqg3-53r7
fix available via `npm audit fix`
node_modules/word-wrap
3 vulnerabilities (2 moderate, 1 high)
from multi-duper-stopwatch.
alekseynemiro
commented on July 22, 2024
npm audit fix
removed 59 packages, changed 26 packages, and audited 1655 packages in 5s
143 packages are looking for funding
run `npm fund` for details
found 0 vulnerabilities
from multi-duper-stopwatch.
alekseynemiro
commented on July 22, 2024
Fixed in v1.2.
from multi-duper-stopwatch.
Related Issues (20)
- Project editor - Missing padding between buttons HOT 1
- About - Add paddings HOT 1
- Do not load deleted project HOT 1
- Sessions restart
- Play icon for multiple actions at the same time HOT 1
- Navigation service
- Report - Add entry HOT 1
- Layout settings: Replace the popup menu with a modal window HOT 1
- The layout button should only be on the stopwatch screen HOT 1
- Use colorization mode by default HOT 1
- Report - Replace current activity HOT 1
- Layout settings - Replace icon HOT 1
- Layout settings - checkbox doesn't work HOT 1
- Cannot read property 'backdrop' of undefined HOT 1
- NaN:NaN:NaN.NaN HOT 1
- Report - Notes
- Report - Current Activity - Cut off a piece
- Report - Context menu - Show activity in header
- Report - Split - Move part size to top
Recommend Projects
-
React
A declarative, efficient, and flexible JavaScript library for building user interfaces.
-
Vue.js
🖖 Vue.js is a progressive, incrementally-adoptable JavaScript framework for building UI on the web.
-
Typescript
TypeScript is a superset of JavaScript that compiles to clean JavaScript output.
-
TensorFlow
An Open Source Machine Learning Framework for Everyone
-
Django
The Web framework for perfectionists with deadlines.
-
Laravel
A PHP framework for web artisans
-
D3
Bring data to life with SVG, Canvas and HTML. 📊📈🎉
-
Recommend Topics
-
javascript
JavaScript (JS) is a lightweight interpreted programming language with first-class functions.
-
web
Some thing interesting about web. New door for the world.
-
server
A server is a program made to process requests and deliver data to clients.
-
Machine learning
Machine learning is a way of modeling and interpreting data that allows a piece of software to respond intelligently.
-
Visualization
Some thing interesting about visualization, use data art
-
Game
Some thing interesting about game, make everyone happy.
Recommend Org
-
Facebook
We are working to build community through open source technology. NB: members must have two-factor auth.
-
Microsoft
Open source projects and samples from Microsoft.
-
Google
Google ❤️ Open Source for everyone.
-
Alibaba
Alibaba Open Source for everyone
-
D3
Data-Driven Documents codes.
-
Tencent
China tencent open source team.
from multi-duper-stopwatch.