EUVD-2021-2320

Malware in sbrugna...

CVE-2025-32387

Helm is a package manager for Charts for Kubernetes. A JSON Schema file within a chart can be crafted with a deeply nested chain of references, leading to parser recursion that can exceed the stack size limit and trigger a stack overflow. This issue has been resolved in Helm v3.17.3...

OESA-2022-1769 nodejs security update

Node.js is a platform built on Chrome's JavaScript runtime for easily building fast, scalable network applications. Node.js uses an event-driven, non-blocking I/O model that makes it lightweight and efficient, perfect for data-intensive real-time applications that run across distributed devices...

@1pedro/eslint-config (=0.1.16), @2109-t5/server (>=1.0.0 <=1.0.9) +2562 more potentially affected by CVE-2021-3918 via json-schema (>=0.2.0 <=0.3.0)

json-schema NPM version =0.2.0, =1.0.0, =1.0.0, =0.1.0, =0.0.0-semantic-release, =14.0.0, =0.1.9, =0.1.9, =0.0.1, =0.0.1, =3.0.0-beta.3 and more Source cves: CVE-2021-3918 Source advisory: OSV:GHSA-896R-F27R-55MW...

Prototype Pollution

json-schema is vulnerable to prototype pollution. An attacker can inject properties into existing construct prototypes via the checkObj function in validate.js and modify attributes such as proto. and constructor...

CVE-2021-3918

json-schema is vulnerable to Improperly Controlled Modification of Object Prototype Attributes 'Prototype Pollution'...