Fix CVE–2018–13797 #8
An automation triggered a pipeline failure
Found 147 vulnerabilities. An additional 1 vulnerabilities have been marked as unaffected.
Output from Automations
111 rules were checked:
If a new dependency is added where the license risk is at least medium
then notify all users in the group admins by email
✔️ The rule did not trigger. Manage rule
If a new dependency is added where the license risk is at least medium
then notify all users in the group admins by email
✔️ The rule did not trigger. Manage rule
If a new dependency is added where the license risk is at least medium
then notify all users in the group admins by email
✔️ The rule did not trigger. Manage rule
If a new dependency is added where the license risk is at least medium
then notify all users in the group admins by email
✔️ The rule did not trigger. Manage rule
If a new dependency is added where the license risk is at least medium
then notify all users in the group admins by email
✔️ The rule did not trigger. Manage rule
If a new dependency is added where the license risk is at least medium
then notify all users in the group admins by email
✔️ The rule did not trigger. Manage rule
If a new dependency is added where the license risk is at least medium
then notify all users in the group admins by email
✔️ The rule did not trigger. Manage rule
If a new dependency is added where the license risk is at least medium
then notify all users in the group admins by email
✔️ The rule did not trigger. Manage rule
If a new dependency is added where the license risk is at least medium
then notify all users in the group admins by email
✔️ The rule did not trigger. Manage rule
If a new dependency is added where the license risk is at least medium
then notify all users in the group admins by email
✔️ The rule did not trigger. Manage rule
If a new dependency is added where the license risk is at least medium
then notify all users in the group admins by email
✔️ The rule did not trigger. Manage rule
If a new dependency is added where the license risk is at least medium
then notify all users in the group admins by email
✔️ The rule did not trigger. Manage rule
If a new dependency is added where the license risk is at least medium
then notify all users in the group admins by email
✔️ The rule did not trigger. Manage rule
If a new dependency is added where the license risk is at least medium
then notify all users in the group admins by email
✔️ The rule did not trigger. Manage rule
If a new dependency is added where the license risk is at least medium
then notify all users in the group admins by email
✔️ The rule did not trigger. Manage rule
If a new dependency is added where the license risk is at least medium
then notify all users in the group admins by email
✔️ The rule did not trigger. Manage rule
If a new dependency is added where the license risk is at least medium
then notify all users in the group admins by email
✔️ The rule did not trigger. Manage rule
If a new dependency is added where the license risk is at least medium
then notify all users in the group admins by email
✔️ The rule did not trigger. Manage rule
If a new dependency is added where the license risk is at least medium
then notify all users in the group admins by email
✔️ The rule did not trigger. Manage rule
If a new dependency is added where the license risk is at least medium
then notify all users in the group admins by email
✔️ The rule did not trigger. Manage rule
If a new dependency is added where the license risk is at least medium
then notify all users in the group admins by email
✔️ The rule did not trigger. Manage rule
If a new dependency is added where the license risk is at least medium
then notify all users in the group admins by email
✔️ The rule did not trigger. Manage rule
If a new dependency is added where the license risk is at least medium
then notify all users in the group admins by email
✔️ The rule did not trigger. Manage rule
If a new dependency is added where the license risk is at least medium
then notify all users in the group admins by email
✔️ The rule did not trigger. Manage rule
If a new dependency is added where the license risk is at least medium
then notify all users in the group admins by email
✔️ The rule did not trigger. Manage rule
If a new dependency is added where the license risk is at least medium
then notify all users in the group admins by email
✔️ The rule did not trigger. Manage rule
If a new dependency is added where the license risk is at least medium
then notify all users in the group admins by email
✔️ The rule did not trigger. Manage rule
If a new dependency is added where the license risk is at least medium
then notify all users in the group admins by email
✔️ The rule did not trigger. Manage rule
If a new dependency is added where the license risk is at least medium
then notify all users in the group admins by email
✔️ The rule did not trigger. Manage rule
If a new dependency is added where the license risk is at least medium
then notify all users in the group admins by email
✔️ The rule did not trigger. Manage rule
If a new dependency is added where the license risk is at least medium
then notify all users in the group admins by email
✔️ The rule did not trigger. Manage rule
If a new dependency is added where the license risk is at least medium
then notify all users in the group admins by email
✔️ The rule did not trigger. Manage rule
If a new dependency is added where the license risk is at least medium
then notify all users in the group admins by email
✔️ The rule did not trigger. Manage rule
If a new dependency is added where the license risk is at least medium
then notify all users in the group admins by email
✔️ The rule did not trigger. Manage rule
If a new dependency is added where the license risk is at least medium
then notify all users in the group admins by email
✔️ The rule did not trigger. Manage rule
If a new dependency is added where the license risk is at least medium
then notify all users in the group admins by email
✔️ The rule did not trigger. Manage rule
If a new dependency is added where the license risk is at least medium
then notify all users in the group admins by email
✔️ The rule did not trigger. Manage rule
If a new dependency is added where the license risk is at least medium
then notify all users in the group admins by email
✔️ The rule did not trigger. Manage rule
If a new dependency is added where the license risk is at least medium
then notify all users in the group admins by email
✔️ The rule did not trigger. Manage rule
If a new dependency is added where the license risk is at least medium
then notify all users in the group admins by email
✔️ The rule did not trigger. Manage rule
If a new dependency is added where the license risk is at least medium
then notify all users in the group admins by email
✔️ The rule did not trigger. Manage rule
If a new dependency is added where the license risk is at least medium
then notify all users in the group admins by email
✔️ The rule did not trigger. Manage rule
If a new dependency is added where the license risk is at least medium
then notify all users in the group admins by email
✔️ The rule did not trigger. Manage rule
If a new dependency is added where the license risk is at least medium
then notify all users in the group admins by email
✔️ The rule did not trigger. Manage rule
If a new dependency is added where the license risk is at least medium
then notify all users in the group admins by email
✔️ The rule did not trigger. Manage rule
If a new dependency is added where the license risk is at least medium
then notify all users in the group admins by email
✔️ The rule did not trigger. Manage rule
If a new dependency is added where the license risk is at least medium
then notify all users in the group admins by email
✔️ The rule did not trigger. Manage rule
If a new dependency is added where the license risk is at least medium
then notify all users in the group admins by email
✔️ The rule did not trigger. Manage rule
If a new dependency is added where the license risk is at least medium
then notify all users in the group admins by email
✔️ The rule did not trigger. Manage rule
If a new dependency is added where the license risk is at least medium
then notify all users in the group admins by email
✔️ The rule did not trigger. Manage rule
If a new dependency is added where the license risk is at least medium
then notify all users in the group admins by email
✔️ The rule did not trigger. Manage rule
If a new dependency is added where the license risk is at least medium
then notify all users in the group admins by email
✔️ The rule did not trigger. Manage rule
If a new dependency is added where the license risk is at least medium
then notify all users in the group admins by email
✔️ The rule did not trigger. Manage rule
If a new dependency is added where the license risk is at least medium
then notify all users in the group admins by email
✔️ The rule did not trigger. Manage rule
If a new dependency is added where the license risk is at least medium
then notify all users in the group admins by email
✔️ The rule did not trigger. Manage rule
If a new dependency is added where the license risk is at least medium
then notify all users in the group admins by email
✔️ The rule did not trigger. Manage rule
If a new dependency is added where the license risk is at least medium
then notify all users in the group admins by email
✔️ The rule did not trigger. Manage rule
If a new dependency is added where the license risk is at least medium
then notify all users in the group admins by email
✔️ The rule did not trigger. Manage rule
If a new dependency is added where the license risk is at least medium
then notify all users in the group admins by email
✔️ The rule did not trigger. Manage rule
If a new dependency is added where the license risk is at least medium
then notify all users in the group admins by email
✔️ The rule did not trigger. Manage rule
If a new dependency is added where the license risk is at least medium
then notify all users in the group admins by email
✔️ The rule did not trigger. Manage rule
If a new dependency is added where the license risk is at least medium
then notify all users in the group admins by email
✔️ The rule did not trigger. Manage rule
If a new dependency is added where the license risk is at least medium
then notify all users in the group admins by email
✔️ The rule did not trigger. Manage rule
If a new dependency is added where the license risk is at least medium
then notify all users in the group admins by email
✔️ The rule did not trigger. Manage rule
If a new dependency is added where the license risk is at least medium
then notify all users in the group admins by email
✔️ The rule did not trigger. Manage rule
If a new dependency is added where the license risk is at least medium
then notify all users in the group admins by email
✔️ The rule did not trigger. Manage rule
If a new dependency is added where the license risk is at least medium
then notify all users in the group admins by email
✔️ The rule did not trigger. Manage rule
If a new dependency is added where the license risk is at least medium
then notify all users in the group admins by email
✔️ The rule did not trigger. Manage rule
If a new dependency is added where the license risk is at least medium
then notify all users in the group admins by email
✔️ The rule did not trigger. Manage rule
If a new dependency is added where the license risk is at least medium
then notify all users in the group admins by email
✔️ The rule did not trigger. Manage rule
If a new dependency is added where the license risk is at least medium
then notify all users in the group admins by email
✔️ The rule did not trigger. Manage rule
If a new dependency is added where the license risk is at least medium
then notify all users in the group admins by email
✔️ The rule did not trigger. Manage rule
If a new dependency is added where the license risk is at least medium
then notify all users in the group admins by email
✔️ The rule did not trigger. Manage rule
If a new dependency is added where the license risk is at least medium
then notify all users in the group admins by email
✔️ The rule did not trigger. Manage rule
If a new dependency is added where the license risk is at least medium
then notify all users in the group admins by email
✔️ The rule did not trigger. Manage rule
If a new dependency is added where the license risk is at least medium
then notify all users in the group admins by email
✔️ The rule did not trigger. Manage rule
If a new dependency is added where the license risk is at least medium
then notify all users in the group admins by email
✔️ The rule did not trigger. Manage rule
If a new dependency is added where the license risk is at least medium
then notify all users in the group admins by email
✔️ The rule did not trigger. Manage rule
If a new dependency is added where the license risk is at least medium
then notify all users in the group admins by email
✔️ The rule did not trigger. Manage rule
If a new dependency is added where the license risk is at least medium
then notify all users in the group admins by email
✔️ The rule did not trigger. Manage rule
If a new dependency is added where the license risk is at least medium
then notify all users in the group admins by email
✔️ The rule did not trigger. Manage rule
If a new dependency is added where the license risk is at least medium
then notify all users in the group admins by email
✔️ The rule did not trigger. Manage rule
If a new dependency is added where the license risk is at least medium
then notify all users in the group admins by email
✔️ The rule did not trigger. Manage rule
If a new dependency is added where the license risk is at least medium
then notify all users in the group admins by email
✔️ The rule did not trigger. Manage rule
If a new dependency is added where the license risk is at least medium
then notify all users in the group admins by email
✔️ The rule did not trigger. Manage rule
If a new dependency is added where the license risk is at least medium
then notify all users in the group admins by email
✔️ The rule did not trigger. Manage rule
If a new dependency is added where the license risk is at least medium
then notify all users in the group admins by email
✔️ The rule did not trigger. Manage rule
If a new dependency is added where the license risk is at least medium
then notify all users in the group admins by email
✔️ The rule did not trigger. Manage rule
If a new dependency is added where the license risk is at least medium
then notify all users in the group admins by email
✔️ The rule did not trigger. Manage rule
If a new dependency is added where the license risk is at least medium
then notify all users in the group admins by email
✔️ The rule did not trigger. Manage rule
If a new dependency is added where the license risk is at least medium
then notify all users in the group admins by email
✔️ The rule did not trigger. Manage rule
If a new dependency is added where the license risk is at least medium
then notify all users in the group admins by email
✔️ The rule did not trigger. Manage rule
If a new dependency is added where the license risk is at least medium
then notify all users in the group admins by email
✔️ The rule did not trigger. Manage rule
If a new dependency is added where the license risk is at least medium
then notify all users in the group admins by email
✔️ The rule did not trigger. Manage rule
If a new dependency is added where the license risk is at least medium
then notify all users in the group admins by email
✔️ The rule did not trigger. Manage rule
If a new dependency is added where the license risk is at least medium
then notify all users in the group admins by email
✔️ The rule did not trigger. Manage rule
If a new dependency is added where the license risk is at least medium
then notify all users in the group admins by email
✔️ The rule did not trigger. Manage rule
If a new dependency is added where the license risk is at least medium
then notify all users in the group admins by email
✔️ The rule did not trigger. Manage rule
If a new dependency is added where the license risk is at least medium
then notify all users in the group admins by email
✔️ The rule did not trigger. Manage rule
If a new dependency is added where the license risk is at least medium
then notify all users in the group admins by email
✔️ The rule did not trigger. Manage rule
If a new dependency is added where the license risk is at least medium
then notify all users in the group admins by email
✔️ The rule did not trigger. Manage rule
If a new dependency is added where the license risk is at least medium
then notify all users in the group admins by email
✔️ The rule did not trigger. Manage rule
If a previously existing dependency contains a vulnerability which has not been marked as unaffected and which has not triggered this rule for this dependency before
then notify all users in the group admins by email
✔️ The rule did not trigger. Manage rule
If a new dependency is added where the license risk is at least medium
then notify all users in the group admins by email
✔️ The rule did not trigger. Manage rule
If there is a dependency which is licensed under AAL
then notify all users in the group admins by email
✔️ The rule did not trigger. Manage rule
If a dependency contains a vulnerability which has not been marked as unaffected
where CVSS is low (0.0-3.9)then mark vulnerability as unaffected
✔️ The rule did not trigger. Manage rule
If a dependency contains a vulnerability which has not been marked as unaffected and which has not triggered this rule for this dependency before
then notify all users in the group users by email
📤 The rule triggered for the following vulnerabilities, causing an email notification. Manage rule
| Vulnerability | CVSS2 | CVSS3 | Dependency | Dependency Licenses |
|---|---|---|---|---|
| debricked-179669 | N/A | N/A | node-forge (npm) | BSD, BSD-3-Clause, GPL-2.0-only, NOASSERTION |
| debricked-179671 | N/A | N/A | node-forge (npm) | BSD, BSD-3-Clause, GPL-2.0-only, NOASSERTION |
If a dependency contains a vulnerability which has not been marked as unaffected
where CVSS is missingthen notify all users in the group admins by email
📤 The rule triggered for the following vulnerabilities, causing an email notification. Manage rule
| Vulnerability | CVSS2 | CVSS3 | Dependency | Dependency Licenses |
|---|---|---|---|---|
| debricked-149712 | N/A | N/A | tunnel-agent (npm) | Apache-2.0 |
| debricked-160898 | N/A | N/A | nwmatcher (npm) | MIT |
| debricked-179669 | N/A | N/A | node-forge (npm) | BSD, BSD-3-Clause, GPL-2.0-only, NOASSERTION |
| debricked-180554 | N/A | N/A | shelljs (npm) | BSD-3-Clause, Debricked Unknown License |
| debricked-149668 | N/A | N/A | underscore.string (npm) | MIT |
| debricked-149694 | N/A | N/A | js-yaml (npm) | MIT |
| debricked-149699 | N/A | N/A | js-yaml (npm) | MIT |
| debricked-149740 | N/A | N/A | http-proxy (npm) | MIT |
| debricked-149661 | N/A | N/A | handlebars (npm) | Debricked Unknown License, MIT |
| debricked-149688 | N/A | N/A | braces (npm) | MIT |
| debricked-149662 | N/A | N/A | mem (npm) | MIT |
| debricked-160897 | N/A | N/A | querystringify (npm) | MIT |
| debricked-124 | N/A | N/A | acorn (npm) | MIT |
| debricked-149414 | N/A | N/A | handlebars (npm) | Debricked Unknown License, MIT |
| debricked-149816 | N/A | N/A | handlebars (npm) | Debricked Unknown License, MIT |
| debricked-149824 | N/A | N/A | handlebars (npm) | Debricked Unknown License, MIT |
| debricked-149815 | N/A | N/A | handlebars (npm) | Debricked Unknown License, MIT |
| debricked-160896 | N/A | N/A | diff (npm) | BSD-3-Clause |
| debricked-179671 | N/A | N/A | node-forge (npm) | BSD, BSD-3-Clause, GPL-2.0-only, NOASSERTION |
If a dependency contains a vulnerability which has not been marked as unaffected
then flag vulnerability as vulnerable and notify all users in the group admins by email
❗ 📤 The rule triggered for the following vulnerabilities, causing the vulnerabilities to be flagged as vulnerable and an email notification. Manage rule
| Vulnerability | CVSS2 | CVSS3 | Dependency | Dependency Licenses |
|---|---|---|---|---|
| CVE-2018-3774 | 7.5 | 10 | url-parse (npm) | MIT |
| CVE-2020-28499 | 7.5 | 9.8 | merge (npm) | Debricked Unknown License, MIT |
| CVE-2018-16487 | 7.5 | 9.8 | lodash (npm) | MIT |
| CVE-2020-7677 | N/A | 9.8 | thenify (npm) | MIT |
| CVE-2022-37601 | N/A | 9.8 | loader-utils (npm) | MIT |
| CVE-2019-19919 | 7.5 | 9.8 | handlebars (npm) | Debricked Unknown License, MIT |
| CVE-2019-10746 | 7.5 | 9.8 | mixin-deep (npm) | MIT |
| CVE-2022-29078 | 7.5 | 9.8 | ejs (npm) | Apache-2.0, Debricked Unknown License, MIT |
| CVE-2021-23369 | 7.5 | 9.8 | handlebars (npm) | Debricked Unknown License, MIT |
| CVE-2021-23383 | 7.5 | 9.8 | handlebars (npm) | Debricked Unknown License, MIT |
| CVE-2021-3918 | 7.5 | 9.8 | json-schema (npm) | BSD-3-Clause |
| CVE-2018-13797 | 7.5 | 9.8 | macaddress (npm) | MIT |
| CVE-2018-1000620 | 5 | 9.8 | cryptiles (npm) | BSD-3-Clause |
| CVE-2021-23807 | 7.5 | 9.8 | jsonpointer (npm) | Debricked Unknown License, MIT |
| CVE-2020-28503 | 7.5 | 9.8 | copy-props (npm) | MIT |
| CVE-2018-3750 | 7.5 | 9.8 | deep-extend (npm) | Debricked Unknown License, MIT |
| CVE-2020-15256 | 6.8 | 9.8 | object-path (npm) | MIT |
| CVE-2023-45311 | N/A | 9.8 | fsevents (npm) | MIT |
| CVE-2018-16492 | 7.5 | 9.8 | extend (npm) | Debricked Unknown License, MIT |
| CVE-2020-12265 | 7.5 | 9.8 | decompress (npm) | MIT |
| CVE-2021-23440 | 7.5 | 9.8 | set-value (npm) | MIT |
| CVE-2019-10747 | 7.5 | 9.8 | set-value (npm) | MIT |
| CVE-2017-1000228 | 10 | 9.8 | ejs (npm) | Apache-2.0, Debricked Unknown License, MIT |
| CVE-2022-0691 | 7.5 | 9.8 | url-parse (npm) | MIT |
| CVE-2023-26136 | N/A | 9.8 | tough-cookie (npm) | BSD-3-Clause, CC0-1.0, MIT |
| CVE-2022-1650 | 5.8 | 9.3 | eventsource (npm) | MIT |
| CVE-2019-10744 | 6.4 | 9.1 | lodash.template (npm) | MIT |
| CVE-2019-10744 | 6.4 | 9.1 | lodash (npm) | MIT |
| CVE-2022-0686 | 6.4 | 9.1 | url-parse (npm) | MIT |
| CVE-2018-3728 | 6.5 | 8.8 | hoek (npm) | BSD, BSD-3-Clause |
| CVE-2022-46175 | N/A | 8.8 | json5 (npm) | Debricked Unknown License, MIT |
| CVE-2021-23434 | 7.5 | 8.6 | object-path (npm) | MIT |
| CVE-2021-37701 | 4.4 | 8.6 | tar (npm) | BSD, BSD-2-Clause, ISC, NOASSERTION |
| CVE-2021-37712 | 4.4 | 8.6 | tar (npm) | BSD, BSD-2-Clause, ISC, NOASSERTION |
| CVE-2021-37713 | 4.4 | 8.6 | tar (npm) | BSD, BSD-2-Clause, ISC, NOASSERTION |
| CVE-2019-20920 | 6.8 | 8.1 | handlebars (npm) | Debricked Unknown License, MIT |
| CVE-2019-5448 | 4.3 | 8.1 | yarn (npm) | Apache-1.1, Apache-2.0, BSD-2-Clause, BSD-3-Clause, ISC, MIT, Unlicense, WTFPL |
| CVE-2021-32803 | 5.8 | 8.1 | tar (npm) | BSD, BSD-2-Clause, ISC, NOASSERTION |
| CVE-2021-32804 | 5.8 | 8.1 | tar (npm) | BSD, BSD-2-Clause, ISC, NOASSERTION |
| CVE-2021-43138 | 6.8 | 7.8 | async (npm) | MIT |
| CVE-2019-10773 | 6.8 | 7.8 | yarn (npm) | Apache-1.1, Apache-2.0, BSD-2-Clause, BSD-3-Clause, ISC, MIT, Unlicense, WTFPL |
| CVE-2020-13822 | 6.8 | 7.7 | elliptic (npm) | MIT |
| CVE-2022-24772 | 5 | 7.5 | node-forge (npm) | BSD, BSD-3-Clause, GPL-2.0-only, NOASSERTION |
| CVE-2021-33623 | 5 | 7.5 | trim-newlines (npm) | MIT |
| CVE-2016-10540 | 5 | 7.5 | minimatch (npm) | Debricked Unknown License, ISC, MIT |
| CVE-2021-3803 | 5 | 7.5 | nth-check (npm) | BSD-2-Clause |
| CVE-2017-1000189 | 5 | 7.5 | ejs (npm) | Apache-2.0, Debricked Unknown License, MIT |
| CVE-2017-16138 | 5 | 7.5 | mime (npm) | Debricked Unknown License, MIT |
| CVE-2017-1000048 | 5 | 7.5 | qs (npm) | BSD, BSD-3-Clause, MIT |
| CVE-2021-3807 | 7.8 | 7.5 | ansi-regex (npm) | MIT |
| CVE-2020-28469 | 5 | 7.5 | glob-parent (npm) | ISC |
| CVE-2021-23343 | 5 | 7.5 | path-parse (npm) | MIT |
| CVE-2021-29059 | 5 | 7.5 | is-svg (npm) | MIT |
| CVE-2021-28092 | 5 | 7.5 | is-svg (npm) | MIT |
| CVE-2021-27290 | 4.3 | 7.5 | ssri (npm) | CC0-1.0, ISC |
| CVE-2020-8131 | 5.1 | 7.5 | yarn (npm) | Apache-1.1, Apache-2.0, BSD-2-Clause, BSD-3-Clause, ISC, MIT, Unlicense, WTFPL |
| CVE-2022-25881 | N/A | 7.5 | http-cache-semantics (npm) | BSD-2-Clause |
| CVE-2018-25079 | 4 | 7.5 | is-url (npm) | Debricked Unknown License, MIT |
| CVE-2022-25883 | N/A | 7.5 | semver (npm) | BSD-2-Clause, Debricked Unknown License, ISC, MIT |
| CVE-2023-26115 | N/A | 7.5 | word-wrap (npm) | MIT |
| CVE-2016-2537 | 5 | 7.5 | is-my-json-valid (npm) | MIT |
| CVE-2017-18077 | 5 | 7.5 | brace-expansion (npm) | MIT |
| CVE-2021-23382 | 5 | 7.5 | postcss (npm) | MIT |
| CVE-2019-20922 | 7.8 | 7.5 | handlebars (npm) | Debricked Unknown License, MIT |
| CVE-2019-13173 | 6.4 | 7.5 | fstream (npm) | BSD-2-Clause, Debricked Unknown License, ISC |
| CVE-2021-23424 | 5 | 7.5 | ansi-html (npm) | Apache-2.0 |
| CVE-2017-15010 | 5 | 7.5 | tough-cookie (npm) | BSD-3-Clause, CC0-1.0, MIT |
| CVE-2022-24999 | N/A | 7.5 | express (npm) | ISC, MIT |
| CVE-2017-20165 | 2.7 | 7.5 | debug (npm) | Debricked Unknown License, MIT |
| CVE-2022-38900 | N/A | 7.5 | decode-uri-component (npm) | MIT |
| CVE-2021-3777 | 7.8 | 7.5 | tmpl (npm) | BSD-3-Clause, Debricked Unknown License |
| CVE-2022-29167 | 5 | 7.5 | hawk (npm) | BSD-3-Clause |
| CVE-2022-24999 | N/A | 7.5 | qs (npm) | BSD, BSD-3-Clause, MIT |
| CVE-2022-37603 | N/A | 7.5 | loader-utils (npm) | MIT |
| CVE-2018-16469 | 5 | 7.5 | merge (npm) | Debricked Unknown License, MIT |
| CVE-2018-20834 | 6.4 | 7.5 | tar (npm) | BSD, BSD-2-Clause, ISC, NOASSERTION |
| CVE-2022-24771 | 5 | 7.5 | node-forge (npm) | BSD, BSD-3-Clause, GPL-2.0-only, NOASSERTION |
| CVE-2018-14732 | 5 | 7.5 | webpack-dev-server (npm) | MIT |
| CVE-2020-7662 | 5 | 7.5 | websocket-extensions (npm) | Apache-2.0, MIT |
| CVE-2018-3737 | 5 | 7.5 | sshpk (npm) | MIT |
| CVE-2022-3517 | N/A | 7.5 | minimatch (npm) | Debricked Unknown License, ISC, MIT |
| CVE-2019-20149 | 5 | 7.5 | kind-of (npm) | MIT |
| CVE-2017-16119 | 5 | 7.5 | fresh (npm) | Debricked Unknown License, MIT |
| CVE-2022-21222 | N/A | 7.5 | css-what (npm) | BSD-2-Clause |
| CVE-2021-3805 | 5 | 7.5 | object-path (npm) | MIT |
| CVE-2018-20835 | 6.4 | 7.5 | tar-fs (npm) | Debricked Unknown License, MIT |
| CVE-2017-16099 | 5 | 7.5 | no-case (npm) | MIT |
| CVE-2017-16118 | 5 | 7.5 | forwarded (npm) | MIT |
| CVE-2022-37599 | N/A | 7.5 | loader-utils (npm) | MIT |
| CVE-2020-8203 | 5.8 | 7.4 | lodash (npm) | MIT |
| CVE-2020-7788 | 7.5 | 7.3 | ini (npm) | Debricked Unknown License, ISC, MIT |
| CVE-2020-7774 | 7.5 | 7.3 | y18n (npm) | ISC |
| CVE-2021-23337 | 6.5 | 7.2 | lodash (npm) | MIT |
| CVE-2022-0144 | 3.6 | 7.1 | shelljs (npm) | BSD-3-Clause, Debricked Unknown License |
| CVE-2020-28498 | 4.3 | 6.8 | elliptic (npm) | MIT |
| CVE-2022-38778 | N/A | 6.5 | decode-uri-component (npm) | MIT |
| CVE-2023-46234 | N/A | 6.5 | browserify-sign (npm) | ISC |
| CVE-2020-8244 | 6.4 | 6.5 | bl (npm) | MIT |
| CVE-2018-3721 | 4 | 6.5 | lodash (npm) | MIT |
| CVE-2019-1010266 | 4 | 6.5 | lodash (npm) | MIT |
| CVE-2023-28155 | N/A | 6.1 | request (npm) | Apache-2.0 |
| CVE-2017-1000188 | 4.3 | 6.1 | ejs (npm) | Apache-2.0, Debricked Unknown License, MIT |
| CVE-2022-0235 | 5.8 | 6.1 | node-fetch (npm) | MIT |
| CVE-2022-0122 | 5.8 | 6.1 | node-forge (npm) | BSD, BSD-3-Clause, GPL-2.0-only, NOASSERTION |
| CVE-2019-15608 | 4.3 | 5.9 | yarn (npm) | Apache-1.1, Apache-2.0, BSD-2-Clause, BSD-3-Clause, ISC, MIT, Unlicense, WTFPL |
| CVE-2021-20066 | 6.8 | 5.6 | jsdom (npm) | MIT |
| CVE-2020-7789 | 6.8 | 5.6 | node-notifier (npm) | MIT |
| CVE-2021-24033 | 6.8 | 5.6 | react-dev-utils (npm) | BSD-3-Clause, MIT |
| CVE-2020-15366 | 6.8 | 5.6 | [ajv (npm)](https://staging.debricked.com/app/en/dependency/1584?reposito... |
[Output was too long for GitHub]