Debricked / Vulnerability analysis
completed
Jun 7, 2023 in 13s
An automation triggered a pipeline warning
Found 33 vulnerabilities. An additional 6 vulnerabilities have been marked as unaffected.
Output from Automations
1 rule was checked:
If a dependency contains a vulnerability which has not been marked as unaffected
where CVSS is at least medium (4.0-6.9)
then send a pipeline warning
⚠️ The rule triggered for the following vulnerabilities, causing a pipeline warning. Manage rule
Vulnerability |
CVSS2 |
CVSS3 |
Dependency |
Dependency Licenses |
CVE-2020-28499 |
7.5 |
9.8 |
merge (npm) |
Debricked Unknown License, MIT |
CVE-2017-16042 |
7.5 |
9.8 |
growl (npm) |
Debricked Unknown License, MIT |
CVE-2022-25912 |
N/A |
9.8 |
simple-git (npm) |
Debricked Unknown License, MIT |
CVE-2020-7707 |
7.5 |
9.8 |
property-expr (npm) |
MIT |
CVE-2022-24433 |
7.5 |
9.8 |
simple-git (npm) |
Debricked Unknown License, MIT |
CVE-2022-24066 |
7.5 |
9.8 |
simple-git (npm) |
Debricked Unknown License, MIT |
CVE-2019-10744 |
6.4 |
9.1 |
lodash.defaultsdeep (npm) |
MIT |
CVE-2018-3739 |
6.4 |
9.1 |
https-proxy-agent (npm) |
MIT |
CVE-2021-28918 |
6.4 |
9.1 |
netmask (npm) |
MIT |
CVE-2019-10744 |
6.4 |
9.1 |
lodash (npm) |
MIT |
CVE-2022-25858 |
N/A |
7.5 |
terser (npm) |
BSD-2-Clause, ISC |
CVE-2022-3517 |
N/A |
7.5 |
minimatch (npm) |
Debricked Unknown License, ISC, MIT |
CVE-2020-28469 |
5 |
7.5 |
glob-parent (npm) |
ISC |
CVE-2021-33623 |
5 |
7.5 |
trim-newlines (npm) |
MIT |
CVE-2020-8116 |
7.5 |
7.3 |
dot-prop (npm) |
MIT |
CVE-2021-23337 |
6.5 |
7.2 |
lodash (npm) |
MIT |
CVE-2022-0144 |
3.6 |
7.1 |
shelljs (npm) |
BSD-3-Clause, Debricked Unknown License |
CVE-2019-1010266 |
4 |
6.5 |
lodash (npm) |
MIT |
CVE-2023-28155 |
N/A |
6.1 |
request (npm) |
Apache-2.0, Debricked Unknown License |
CVE-2022-0235 |
5.8 |
6.1 |
node-fetch (npm) |
MIT |
CVE-2018-16487 |
6.8 |
5.6 |
lodash (npm) |
MIT |
CVE-2018-1109 |
5 |
5.3 |
braces (npm) |
MIT |
CVE-2020-15168 |
5 |
5.3 |
node-fetch (npm) |
MIT |
CVE-2017-20162 |
N/A |
5.3 |
ms (npm) |
Debricked Unknown License, MIT |
CVE-2021-29418 |
5 |
5.3 |
netmask (npm) |
MIT |
CVE-2020-28500 |
5 |
5.3 |
lodash (npm) |
MIT |
CVE-2017-16137 |
5 |
5.3 |
debug (npm) |
Debricked Unknown License, MIT |