@antv/auto-chart (>=2.0.0 <=2.1.0-alpha.0), @antv/chart-advisor (>=2.0.0 <=2.1.0-alpha.1) +5 more potentially affected by unknown CVE via @antv/ckb (>=2.0.4 <=2.1.0-alpha.0)

@antv/ckb NPM version =2.0.4, =2.0.0, =2.0.0, =1.2.0-beta.0, =1.0.0-alpha.1, =2.0.0, =2.0.0, =0.0.1, =0.1.0-beta.57 Source cves: unknown CVE Source advisory: OSV:MAL-2026-3860...

@ardeora/start-devtools (>=1.0.0 <=1.0.1), @carvajalconsultants/headstart (>=1.0.0 <=1.0.2) +27 more potentially affected by unknown CVE via @tanstack/start-server-core (>=1.121.0-alpha.28 <=1.167.3)

@tanstack/start-server-core NPM version =1.121.0-alpha.28, =1.0.0, =1.0.0, =0.0.14, =1.20.3-alpha.1, =1.111.10, =1.121.23, =0.0.1, =1.121.0-alpha.28, =1.20.3-alpha.1, =1.114.29, =1.121.23, =1.121.0-alpha.28, =1.97.4, =1.111.10, =1.121.0-alpha.28, =1.169.18 and more Source cves: unknown CVE Source...

@localstack/localstack-mcp-server (>=0.2.0 <=0.4.0), @posthog/nuxt (>=0.0.5 <=1.2.8) +4 more potentially affected by unknown CVE via posthog-node (>=5.0.0 <=5.13.2)

posthog-node NPM version =5.0.0, =0.2.0, =0.0.5, =0.62.0, =20.7.1-alpha.134, =0.0.0-client-js-listmessages-agentid-fix-20251119175531, =1.0.0-beta.9 Source cves: unknown CVE Source advisory: OSV:MAL-2025-190925...

circle (>=0.0.0 <=0.0.9), democirclepackage (=1.0.3) +3 more potentially affected by unknown CVE via post-data (=0.0.0)

post-data NPM version =0.0.0 is affected by a known vulnerability. The following packages have a transitive dependency on post-data and may be impacted: - circle =0.0.0, =0.0.40, =0.0.0, =0.0.1 Source cves: unknown CVE Source advisory: OSV:MAL-2025-29531...

dbs-arch (>=0.2.2 <=0.2.3), dbs-boot (>=0.3.0 <=0.4.0) +7 more potentially affected by unknown CVE via kvm-ioctls (>=0.10.0 <=0.18.0)

kvm-ioctls CARGO version =0.10.0, =0.2.2, =0.3.0, =0.1.0, =0.1.0, =0.2.0, =0.1.0, =0.0.29, =0.2.0 Source cves: unknown CVE Source advisory: OSV:RUSTSEC-2024-0428...

dagster-dbt (>=0.20.5 <=0.23.6), dbt-af (>=0.4.1 <=0.4.2) +53 more potentially affected by unknown CVE via dbt-core (>=1.7.0 <=1.7.2)

dbt-core PYPI version =1.7.0, =0.20.5, =0.4.1, =1.7.0, =1.7.0, =1.7.1, =1.7.0, =1.7.0, =1.7.0, =1.7.0, =1.7.0, =1.7.0, =1.0.0, =1.7.0, =1.7.4 and more Source cves: unknown CVE Source advisory: OSV:GHSA-J4G3-3Q8X-JXQP...

0lever-utils (>=0.0.2 <=0.0.7), 0x-web3 (=5.0.0a5) +2500 more potentially affected by unknown CVE via cryptography (>=0.8.1 <=41.0.2)

cryptography PYPI version =0.8.1, =0.0.2, =0.1.0, =0.5.0rc5, =1.0.0, =1.0.0, =0.0.1, =1.0.2, =0.1.1, =1.0.0, =2.6.3, =2.3.36, =1.0.4, =2.0.0rc0 and more Source cves: unknown CVE Source advisory: OSV:GHSA-JM77-QPHF-C4W8...

a62-emotion (>=0.10.12 <=0.11.4), aiproteomics (=0.2.1) +98 more potentially affected by unknown CVE via tensorflow-cpu (>=1.15.0 <=2.7.4)

tensorflow-cpu PYPI version =1.15.0, =0.10.12, =2.0.0, =2.0.0, =1.0.0, =0.0.5, =0.3.0, =0.0.1, =0.8.1, =0.1.1, =1.3.0, =0.1.0.dev1, =0.0.1, =0.3.3 and more Source cves: unknown CVE Source advisory: OSV:GHSA-XF83-Q765-XM6M...

@11ty/eleventy (=0.3.3), @36node/swagen (=0.1.2) +1580 more potentially affected by unknown CVE via handlebars (>=4.0.0 <=4.5.2)

handlebars NPM version =4.0.0, =1.16.0, =1.16.0, =1.16.0, =1.16.0, =1.0.1, =3.0.0, =1.0.0, =0.1.0, =0.0.1, =1.0.2-alpha.0, =1.0.0, =0.0.2, =5.0.0, =6.0.10 and more Source cves: unknown CVE Source advisory: OSV:GHSA-G9R4-XPMJ-MJ65...