Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

⬆️ Updates eslint-plugin-unicorn to v50 - autoclosed #902

Closed
wants to merge 1 commit into from

:arrow_up: Updates eslint-plugin-unicorn to v50

baa2e38
Select commit
Loading
Failed to load commit list.
Closed

⬆️ Updates eslint-plugin-unicorn to v50 - autoclosed #902

:arrow_up: Updates eslint-plugin-unicorn to v50
baa2e38
Select commit
Loading
Failed to load commit list.
Mend Bolt for GitHub / WhiteSource Security Check failed Dec 23, 2023 in 1m 42s

Security Report

You have successfully remediated 44 vulnerabilities, but introduced 1 new vulnerabilities in this branch.

❌ New vulnerabilities:

CVE Severity CVSS Score Vulnerable Library Suggested Fix Issue
CVE-2023-44270

Path to dependency file: /tilt_modules/tilt_inspector/package.json

Path to vulnerable library: /tilt_modules/tilt_inspector/node_modules/postcss/package.json

Dependency Hierarchy:

-> tilt-inspector-0.1.6.tgz (Root Library)

   -> next-10.2.3.tgz

     -> ❌ postcss-8.2.13.tgz (Vulnerable Library)

Medium 5.3 postcss-8.2.13.tgz Upgrade to version: postcss - 8.4.31 None

✔️ Remediated vulnerabilities:

CVE Vulnerable Library
CVE-2018-16487 lodash-2.4.2.tgz
CVE-2022-25851 jpeg-js-0.4.3.tgz
CVE-2022-25881 http-cache-semantics-4.1.0.tgz
CVE-2022-0144 shelljs-0.8.4.tgz
CVE-2021-3795 semver-regex-1.0.0.tgz
CVE-2015-9251 jquery-1.9.1.js
CVE-2020-11022 jquery-1.9.1.js
CVE-2020-28500 lodash-2.4.2.tgz
CVE-2022-46175 json5-1.0.1.tgz
CVE-2021-23566 nanoid-3.1.25.tgz
CVE-2023-48795 ssh2-0.8.9.tgz
CVE-2022-46175 json5-2.2.0.tgz
CVE-2022-33987 got-11.8.2.tgz
CVE-2023-25166 formula-3.0.0.tgz
CVE-2021-43308 markdown-link-extractor-1.3.0.tgz
CVE-2019-11358 jquery-1.9.1.js
CVE-2021-23358 underscore-1.6.0.tgz
CVE-2021-3749 axios-0.21.1.tgz
CVE-2012-6708 jquery-1.8.1.min.js
CVE-2020-7656 jquery-1.8.1.min.js
CVE-2020-8203 lodash-2.4.2.tgz
CVE-2021-43307 semver-regex-1.0.0.tgz
CVE-2023-45133 traverse-7.15.0.tgz
CVE-2021-23337 lodash-2.4.2.tgz
CVE-2020-7753 trim-0.0.1.tgz
CVE-2022-33987 got-9.6.0.tgz
CVE-2021-3795 semver-regex-3.1.2.tgz
CVE-2023-45857 axios-0.21.1.tgz
CVE-2022-31051 semantic-release-17.4.7.tgz
CVE-2021-43307 semver-regex-3.1.2.tgz
CVE-2022-36083 jose-2.0.5.tgz
CVE-2020-26301 ssh2-0.8.9.tgz
CVE-2020-11023 jquery-1.8.1.min.js
CVE-2019-1010266 lodash-2.4.2.tgz
CVE-2021-43138 async-3.2.1.tgz
CVE-2020-11023 jquery-1.9.1.js
CVE-2018-3721 lodash-2.4.2.tgz
CVE-2021-43616 npm-7.21.1.tgz
CVE-2015-9251 jquery-1.8.1.min.js
CVE-2022-29244 npm-7.21.1.tgz
CVE-2022-3517 minimatch-3.0.4.tgz
CVE-2020-11022 jquery-1.8.1.min.js
CVE-2021-23425 trim-off-newlines-1.0.1.tgz
CVE-2019-10744 lodash-2.4.2.tgz

Base branch total remaining vulnerabilities: 53
Base branch commit: null


Total libraries scanned: 435

Scan token: fee58f4198074ac6b4bbdbacf6df4cec

View more details on Mend Bolt for GitHub