API tools faq
paste
Guest User

Untitled

a guest
Mar 8th, 2025
16
0
Never
Add comment
Not a member of Pastebin yet? Sign Up, it unlocks many cool features!
text 2.30 KB | None | 0 0
raw download clone embed print report
  1. # npm audit report
  2.  
  3. nth-check <2.0.1
  4. Severity: high
  5. Inefficient Regular Expression Complexity in nth-check - https://github.com/advisories/GHSA-rp65-9cf3-cjxr
  6. fix available via `npm audit fix --force`
  7. Will install [email protected], which is a breaking change
  8. node_modules/svgo/node_modules/nth-check
  9. css-select <=3.1.0
  10. Depends on vulnerable versions of nth-check
  11. node_modules/svgo/node_modules/css-select
  12. svgo 1.0.0 - 1.3.2
  13. Depends on vulnerable versions of css-select
  14. node_modules/svgo
  15. @svgr/plugin-svgo <=5.5.0
  16. Depends on vulnerable versions of svgo
  17. node_modules/@svgr/plugin-svgo
  18. @svgr/webpack 4.0.0 - 5.5.0
  19. Depends on vulnerable versions of @svgr/plugin-svgo
  20. node_modules/@svgr/webpack
  21. react-scripts >=2.1.4
  22. Depends on vulnerable versions of @svgr/webpack
  23. Depends on vulnerable versions of resolve-url-loader
  24. Depends on vulnerable versions of workbox-webpack-plugin
  25. node_modules/react-scripts
  26.  
  27. postcss <8.4.31
  28. Severity: moderate
  29. PostCSS line return parsing error - https://github.com/advisories/GHSA-7fh5-64p2-3v2j
  30. fix available via `npm audit fix --force`
  31. Will install [email protected], which is a breaking change
  32. node_modules/resolve-url-loader/node_modules/postcss
  33. resolve-url-loader 0.0.1-experiment-postcss || 3.0.0-alpha.1 - 4.0.0
  34. Depends on vulnerable versions of postcss
  35. node_modules/resolve-url-loader
  36.  
  37. serialize-javascript <6.0.2
  38. Severity: moderate
  39. Cross-site Scripting (XSS) in serialize-javascript - https://github.com/advisories/GHSA-76p7-773f-r4q5
  40. fix available via `npm audit fix --force`
  41. Will install [email protected], which is a breaking change
  42. node_modules/rollup-plugin-terser/node_modules/serialize-javascript
  43. rollup-plugin-terser 3.0.0 || >=4.0.4
  44. Depends on vulnerable versions of serialize-javascript
  45. node_modules/rollup-plugin-terser
  46. workbox-build 5.0.0-alpha.0 - 7.0.0
  47. Depends on vulnerable versions of rollup-plugin-terser
  48. node_modules/workbox-build
  49. workbox-webpack-plugin 5.0.0-alpha.0 - 7.0.0
  50. Depends on vulnerable versions of workbox-build
  51. node_modules/workbox-webpack-plugin
  52.  
  53. 12 vulnerabilities (6 moderate, 6 high)
  54.  
  55. To address all issues (including breaking changes), run:
  56. npm audit fix --force
  57.  
Advertisement
Add Comment
Please, Sign In to add comment
Public Pastes
We use cookies for various purposes including analytics. By continuing to use Pastebin, you agree to our use of cookies as described in the Cookies Policy.  OK, I Understand
Not a member of Pastebin yet?
Sign Up, it unlocks many cool features!