@classement-des-associations/website-theme (=0.1.3), @neon.id/discovery (>=0.15.1 <=0.17.0) +10 more potentially affected by CVE-2026-46342 via nuxt (=3.1.2)

nuxt NPM version =3.1.2 is affected by a known vulnerability. The following packages have a transitive dependency on nuxt and may be impacted: - @classement-des-associations/website-theme =0.1.3 - @neon.id/discovery =0.15.1, =0.13.1, =0.16.0, =0.10.1, =0.16.1, =0.17.0 - @neon.id/interfaces =0.152...

IMAPServer (=0.2.0), IMAPServer-cli (=0.1.0) +368 more potentially affected by unknown CVE via diesel (>=0.10.1 <=2.3.4)

diesel CARGO version =0.10.1, =0.1.0, =0.1.0, =0.1.0, =0.4.0, =0.1.4, =0.1.11, =0.1.0, =0.5.0, =0.1.0, =0.1.2 and more Source cves: unknown CVE Source advisory: OSV:GHSA-M9P2-FXP5-V3FP...

IMAPServer (=0.2.0), IMAPServer-cli (=0.1.0) +368 more potentially affected by unknown CVE via diesel (>=0.10.1 <=2.3.4)

diesel CARGO version =0.10.1, =0.1.0, =0.1.0, =0.1.0, =0.4.0, =0.1.4, =0.1.11, =0.1.0, =0.5.0, =0.1.0, =0.1.2 and more Source cves: unknown CVE Source advisory: OSV:GHSA-Q8X8-JRHJ-FH9P...

pqc-combo (=0.1.0), pqc-fips (=0.0.3) +1 more potentially affected by unknown CVE via libcrux-ml-dsa (=0.0.4)

libcrux-ml-dsa CARGO version =0.0.4 is affected by a known vulnerability. The following packages have a transitive dependency on libcrux-ml-dsa and may be impacted: - pqc-combo =0.1.0 - pqc-fips =0.0.3 - pqc-nostd =0.1.0 Source cves: unknown CVE Source advisory: OSV:GHSA-FHVH-VW7H-9XF3...

@3onedata/alsatian (>=0.1.8-fix.3 <=0.1.8-fix.5), @dragonforce2010/openclaw-cn (>=0.1.7 <=0.1.7-fix7) +6 more potentially affected by unknown CVE via @openclaw-cn/libsignal (=2.0.1)

@openclaw-cn/libsignal NPM version =2.0.1 is affected by a known vulnerability. The following packages have a transitive dependency on @openclaw-cn/libsignal and may be impacted: - @3onedata/alsatian =0.1.8-fix.3, =0.1.7, =0.1.8-fix.3, =0.1.4, =0.1.0, =0.1.7, =2026.2.28, =2026.2.29 Source cves:...

@amag-ch/cds-dk (=0.4.0), @cap-js/ord (>=1.3.0 <=1.6.0) +11 more potentially affected by unknown CVE via @cap-js/openapi (=1.4.0)

@cap-js/openapi NPM version =1.4.0 is affected by a known vulnerability. The following packages have a transitive dependency on @cap-js/openapi and may be impacted: - @amag-ch/cds-dk =0.4.0 - @cap-js/ord =1.3.0, =3.0.0, =2.0.0, =8.0.2, =0.0.1, =1.0.0, =0.5.0, =3.202312.1, =1.0.0, =1.0.0, =1.1.5,...

@antv/g6 (>=5.0.0-alpha.1 <=5.0.0-beta.28) potentially affected by unknown CVE via @antv/layout-wasm (=1.3.1)

@antv/layout-wasm NPM version =1.3.1 is affected by a known vulnerability. The following packages have a transitive dependency on @antv/layout-wasm and may be impacted: - @antv/g6 =5.0.0-alpha.1, =5.0.0-beta.28 Source cves: unknown CVE Source advisory: OSV:MAL-2026-4058...

@kqinfo/ui (=1.2.12), ai-sales-card (=1.4.1) potentially affected by unknown CVE via @antv/wx-f2 (=2.1.1)

@antv/wx-f2 NPM version =2.1.1 is affected by a known vulnerability. The following packages have a transitive dependency on @antv/wx-f2 and may be impacted: - @kqinfo/ui =1.2.12 - ai-sales-card =1.4.1 Source cves: unknown CVE Source advisory: OSV:MAL-2026-4097...

@antv/li-analysis-assets (>=1.0.0 <=1.9.1), @antv/li-core-assets (>=1.0.0 <=1.3.7) +3 more potentially affected by unknown CVE via @antv/li-sdk (=1.5.1)

@antv/li-sdk NPM version =1.5.1 is affected by a known vulnerability. The following packages have a transitive dependency on @antv/li-sdk and may be impacted: - @antv/li-analysis-assets =1.0.0, =1.0.0, =1.0.0, =0.0.1, =0.0.2 Source cves: unknown CVE Source advisory: OSV:MAL-2026-4065...

hik-mapbox (>=0.0.1 <=1.4.3) potentially affected by unknown CVE via @antv/l7-three (=2.25.4)

@antv/l7-three NPM version =2.25.4 is affected by a known vulnerability. The following packages have a transitive dependency on @antv/l7-three and may be impacted: - hik-mapbox =0.0.1, =1.4.3 Source cves: unknown CVE Source advisory: OSV:MAL-2026-4052...

@antv/dipper (>=0.0.3 <=0.0.4), @antv/dipper-widgets (>=0.0.2 <=0.0.4) potentially affected by unknown CVE via @antv/dipper-component (>=0.0.2 <=0.0.4)

@antv/dipper-component NPM version =0.0.2, =0.0.3, =0.0.2, =0.0.4 Source cves: unknown CVE Source advisory: OSV:MAL-2026-3870...

@widget-js/mindmap (>=0.0.1 <=0.0.5), gulf_web_scs (>=1.0.0 <=1.0.5) potentially affected by unknown CVE via @antv/x6-react-shape (=3.0.1)

@antv/x6-react-shape NPM version =3.0.1 is affected by a known vulnerability. The following packages have a transitive dependency on @antv/x6-react-shape and may be impacted: - @widget-js/mindmap =0.0.1, =1.0.0, =1.0.5 Source cves: unknown CVE Source advisory: OSV:MAL-2026-4114...

@jsr2npm/yao__gpt-vis-mcp (>=0.0.1 <=0.1.1), @ly_agent/ly-vis-mcp-server (=0.1.14) +3 more potentially affected by unknown CVE via @antv/gpt-vis-ssr (>=0.1.10 <=0.3.7)

@antv/gpt-vis-ssr NPM version =0.1.10, =0.0.1, =0.0.1, =1.0.0, =1.0.0, =1.0.2 Source cves: unknown CVE Source advisory: OSV:MAL-2026-4021...

@antv/g-mobile-canvas (>=1.0.0 <=1.1.1), @antv/g-mobile-svg (>=1.0.0 <=1.1.1) +1 more potentially affected by unknown CVE via @antv/g-plugin-gesture (>=2.0.0 <=2.1.1)

@antv/g-plugin-gesture NPM version =2.0.0, =1.0.0, =1.0.0, =1.0.0, =1.1.1 Source cves: unknown CVE Source advisory: OSV:MAL-2026-3944...

@antv/auto-chart (>=2.0.0 <=2.1.0-alpha.0), @antv/ava (>=3.0.0 <=3.6.0-alpha.0) +18 more potentially affected by unknown CVE via @antv/color-schema (=0.2.3)

@antv/color-schema NPM version =0.2.3 is affected by a known vulnerability. The following packages have a transitive dependency on @antv/color-schema and may be impacted: - @antv/auto-chart =2.0.0, =3.0.0, =3.0.0, =2.0.0, =5.1.5, =0.1.0, =2.0.4, =0.1.7, =1.0.0, =3.4.1-formant, =3.3.2-formant,...

@antv/l7 (>=1.1.11 <=2.7.22), @antv/l7-layers (>=2.5.37-mini2 <=2.8.35) +13 more potentially affected by unknown CVE via @antv/geo-coord (=1.0.8)

@antv/geo-coord NPM version =1.0.8 is affected by a known vulnerability. The following packages have a transitive dependency on @antv/geo-coord and may be impacted: - @antv/l7 =1.1.11, =2.5.37-mini2, =2.5.45, =2.5.45, =2.5.45, =2.3.2, =2.8.35, =2.8.35, =2.8.35, =2.3.2, =1.0.0, =0.1.0, =1.0.0,...

@antv/l7-editor (>=1.1.0 <=1.1.13), @antv/li-aiearth-assets (>=0.0.1 <=0.4.7) +2 more potentially affected by unknown CVE via @antv/sam (>=0.0.1 <=0.1.0)

@antv/sam NPM version =0.0.1, =1.1.0, =0.0.1, =0.1.1, =0.1.4 - @tommy2gis/geo-editor =1.1.9 Source cves: unknown CVE Source advisory: OSV:MAL-2026-4082...

@antv/gpt-vis-ssr (>=0.1.9 <=0.3.7), @jsr2npm/yao__gpt-vis-mcp (>=0.1.0 <=0.1.2-beta.1) +5 more potentially affected by unknown CVE via @antv/g-plugin-rough-canvas-renderer (=2.1.1)

@antv/g-plugin-rough-canvas-renderer NPM version =2.1.1 is affected by a known vulnerability. The following packages have a transitive dependency on @antv/g-plugin-rough-canvas-renderer and may be impacted: - @antv/gpt-vis-ssr =0.1.9, =0.1.0, =0.0.1, =0.2.1, =1.0.0, =1.0.0, =1.0.2 Source cves:...

@action.sustainability/storybook-dashboard (>=0.1.1 <=0.1.5), @agentlab/ldkg-ui-charts (>=0.1.4 <=0.1.7) +251 more potentially affected by unknown CVE via @antv/l7-layers (>=2.10.0 <=2.25.4)

@antv/l7-layers NPM version =2.10.0, =0.1.1, =0.1.4, =1.1.15, =0.1.0, =1.0.17-beta.1, =0.0.1-beta.2, =1.2.0-beta.0, =0.0.2, =0.0.2, =1.0.1, =0.0.2, =0.0.1, =0.0.4 and more Source cves: unknown CVE Source advisory: OSV:MAL-2026-4041...

@antv/g-mobile-svg (>=1.0.0 <=1.0.46), @antv/g-plugin-rough-svg-renderer (>=2.0.0 <=2.0.47) +2 more potentially affected by unknown CVE via @antv/g-plugin-svg-picker (>=2.0.0 <=2.0.9)

@antv/g-plugin-svg-picker NPM version =2.0.0, =1.0.0, =2.0.0, =2.0.0, =2.0.0, =2.0.46 Source cves: unknown CVE Source advisory: OSV:MAL-2026-3953...