@0xlimao/n8n-nodes-ethereum (>=1.0.0 <=1.0.1), @aayshian/n8n-aisensy-ay19 (=0.0.1) +95 more potentially affected by unknown CVE via n8n-core (>=2.0.0-rc.0 <=2.1.4)

n8n-core NPM version =2.0.0-rc.0, =1.0.0, =0.0.1, =1.0.0, =0.0.1, =0.0.1, =0.3.6, =0.1.0, =1.0.0, =0.1.4, =0.1.0, =0.1.13 and more Source cves: unknown CVE Source advisory: SNYK:JS-N8NCORE-16874152...

@antv/gi-assets-advance (>=1.0.0 <=2.5.22), @antv/gi-assets-basic (>=1.0.0 <=2.4.40) +15 more potentially affected by unknown CVE via @antv/graphin-icons (=1.0.0)

@antv/graphin-icons NPM version =1.0.0 is affected by a known vulnerability. The following packages have a transitive dependency on @antv/graphin-icons and may be impacted: - @antv/gi-assets-advance =1.0.0, =1.0.0, =1.0.0, =1.0.0, =0.1.0, =0.0.4, =0.0.1, =0.1.0, =1.0.4, =1.0.11, =0.2.6-beta.4,...

1byte-react-design (>=1.7.1 <=1.14.0), @ant-design/charts (>=2.0.3 <=2.6.7) +100 more potentially affected by unknown CVE via @antv/g2-extension-plot (>=0.1.2 <=0.2.2)

@antv/g2-extension-plot NPM version =0.1.2, =1.7.1, =2.0.3, =1.0.0, =2.0.8, =0.0.1, =0.1.0, =1.0.0, =1.0.1, =2.0.2, =1.2.0, =4.1.13, =1.0.1, =3.0.28 and more Source cves: unknown CVE Source advisory: SNYK:JS-ANTVG2EXTENSIONPLOT-16755090...

@antv/auto-chart (>=2.0.0 <=2.1.0-alpha.0), @antv/thumbnails-component (>=2.0.0 <=2.0.0-alpha.2) potentially affected by unknown CVE via @antv/thumbnails (=2.0.0)

@antv/thumbnails NPM version =2.0.0 is affected by a known vulnerability. The following packages have a transitive dependency on @antv/thumbnails and may be impacted: - @antv/auto-chart =2.0.0, =2.0.0, =2.0.0-alpha.2 Source cves: unknown CVE Source advisory: SNYK:JS-ANTVTHUMBNAILS-16754918...

1byte-react-design (>=1.7.1 <=1.14.0), @aaf-comp/graph-widget (>=1.0.0 <=1.0.3) +250 more potentially affected by unknown CVE via @antv/expr (=1.0.2)

@antv/expr NPM version =1.0.2 is affected by a known vulnerability. The following packages have a transitive dependency on @antv/expr and may be impacted: - 1byte-react-design =1.7.1, =1.0.0, =1.1.43, =1.0.1, =0.14.3, =2.0.0, =2.0.0, =1.0.0, =2.0.0, =3.0.3, =3.0.0, =0.5.6, =5.1.5, =0.1.6, =0.1.0,...

@0xsequence/checkout (>=0.0.0-20250314205219 <=5.2.4), @0xsequence/kit-checkout (>=0.0.0-20250305153405 <=4.6.6-beta.0) +212 more potentially affected by unknown CVE via timeago-react (>=3.0.2 <=3.0.7)

timeago-react NPM version =3.0.2, =0.0.0-20250314205219, =0.0.0-20250305153405, =1.0.0, =1.0.0, =0.5.4, =1.0.1, =2.0.10, =0.25.0, =0.23.0, =0.0.1, =1.0.7, =1.1.6 and more Source cves: unknown CVE Source advisory: SNYK:JS-TIMEAGOREACT-16755037...

@antv/smart-board (>=2.0.0 <=2.1.0-alpha.0) potentially affected by unknown CVE via @antv/lite-insight (=2.1.1)

@antv/lite-insight NPM version =2.1.1 is affected by a known vulnerability. The following packages have a transitive dependency on @antv/lite-insight and may be impacted: - @antv/smart-board =2.0.0, =2.1.0-alpha.0 Source cves: unknown CVE Source advisory: SNYK:JS-ANTVLITEINSIGHT-16754380...

@squawk/mcp (>=0.2.0 <=0.9.0) potentially affected by unknown CVE via @squawk/airspace (>=0.4.1 <=0.8.0)

@squawk/airspace NPM version =0.4.1, =0.2.0, =0.9.0 Source cves: unknown CVE Source advisory: SNYK:JS-SQUAWKAIRSPACE-16640892...

@squawk/mcp (>=0.4.1 <=0.8.1) potentially affected by unknown CVE via @squawk/airport-data (>=0.4.1 <=0.6.1)

@squawk/airport-data NPM version =0.4.1, =0.4.1, =0.8.1 Source cves: unknown CVE Source advisory: SNYK:JS-SQUAWKAIRPORTDATA-16640876...

endringer (>=0.1.0 <=0.7.1) potentially affected by unknown CVE via gix (=0.0.0)

gix CARGO version =0.0.0 is affected by a known vulnerability. The following packages have a transitive dependency on gix and may be impacted: - endringer =0.1.0, =0.7.1 Source cves: unknown CVE Source advisory: OSV:GHSA-FR8X-3VFX-F45H...

@0xwork/connect (>=0.1.0 <=0.1.7), @agentholdings/agent-passport (>=0.1.0 <=0.1.5) +22 more potentially affected by unknown CVE via openclaw (>=2026.3.22 <=2026.4.5)

openclaw NPM version =2026.3.22, =0.1.0, =0.1.0, =0.8.3, =0.1.0, =2026.3.25, =0.0.0, =27.2.5, =1.1.0, =2.1.3, =2026.3.24-3, =0.14.39, =0.1.0, =0.1.1, =0.2.18 and more Source cves: unknown CVE Source advisory: SNYK:JS-OPENCLAW-15966965...

@b4uti4gd/tslash (>=1.0.0 <=1.0.1), @bitsnbobs/starch (>=1.4.0 <=2.0.4) +95 more potentially affected by unknown CVE via @chenglou/pretext (>=0.0.2 <=0.0.4)

@chenglou/pretext NPM version =0.0.2, =1.0.0, =1.4.0, =3.1.0, =3.1.0, =3.1.0, =1.3.1, =0.3.0, =1.17.0, =1.13.1, =1.61.3 and more Source cves: unknown CVE Source advisory: SNYK:JS-CHENGLOUPRETEXT-16321421...

4coders-commons (>=0.0.1 <=0.0.2), @1delta/aggregators (>=0.1.0 <=0.1.6) +2151 more potentially affected by unknown CVE via handlebars (>=4.6.0 <=4.7.8)

handlebars NPM version =4.6.0, =0.0.1, =0.1.0, =0.1.0, =0.0.11, =0.0.52, =0.1.0, =0.0.72, =0.1.0, =1.1.1, =0.0.0-3b548b7bf6ff6554f724240da3a11be924237e6c, =1.0.0, =0.1.0-alpha.1, =3.1.2, =3.1.6, =0.0.1, =0.1.7 and more Source cves: unknown CVE Source advisory: SNYK:JS-HANDLEBARS-15813031...

2mxdev-gql-gateway (=1.0.0), 4m-node-server (>=0.0.1 <=0.0.8) +3190 more potentially affected by unknown CVE via apollo-server-core (>=1.3.2 <=3.9.0)

apollo-server-core NPM version =1.3.2, =0.0.1, =1.0.2, =0.0.80, =3.10.1, =1.2.0-pre.24, =1.0.1, =1.0.0, =1.0.0, =0.5.0, =1.0.0, =0.1.3, =0.0.1, =0.1.1, =0.0.1, =0.0.5 and more Source cves: unknown CVE Source advisory: SNYK:JS-APOLLOSERVERCORE-15790567...

pqc-combo (=0.1.0), pqc-fips (=0.0.3) +1 more potentially affected by unknown CVE via libcrux-ml-dsa (=0.0.4)

libcrux-ml-dsa CARGO version =0.0.4 is affected by a known vulnerability. The following packages have a transitive dependency on libcrux-ml-dsa and may be impacted: - pqc-combo =0.1.0 - pqc-fips =0.0.3 - pqc-nostd =0.1.0 Source cves: unknown CVE Source advisory: OSV:GHSA-CP57-FQ8G-QH6V...

@aokyra/baileys (=2.0.6), @arceos/baileys (>=10.0.0 <=10.0.4) +76 more potentially affected by unknown CVE via @shennmine/libsignal-node (=0.0.1-security)

@shennmine/libsignal-node NPM version =0.0.1-security is affected by a known vulnerability. The following packages have a transitive dependency on @shennmine/libsignal-node and may be impacted: - @aokyra/baileys =2.0.6 - @arceos/baileys =10.0.0, =0.1.1, =2.0.3, =1.0.0, =1.0.0, =1.0.3, =1.0.6,...

any2htpy (=0.1.4) potentially affected by unknown CVE via justhtml (=0.35.0)

justhtml PYPI version =0.35.0 is affected by a known vulnerability. The following packages have a transitive dependency on justhtml and may be impacted: - any2htpy =0.1.4 Source cves: unknown CVE Source advisory: OSV:GHSA-QVC2-MG72-JJHX...

@abysslabs/cli (=0.0.2), @brendonovich/solidjs__start (>=0.0.0 <=0.0.3) +53 more potentially affected by unknown CVE via h3 (>=2.0.0-beta.0 <=2.0.1-rc.14)

h3 NPM version =2.0.0-beta.0, =0.0.0, =0.1.25, =0.3.3, =0.1.0, =0.1.0, =0.1.0, =0.1.0, =0.1.0, =0.1.0, =0.1.0, =0.1.0, =0.1.0, =0.1.0, =0.1.0, =0.1.1 and more Source cves: unknown CVE Source advisory: SNYK:JS-H3-15683856...

0agent (>=1.0.1 <=1.1.5), 0dot (=0.6.0) +58311 more potentially affected by unknown CVE via hono (>=0.5.10 <=4.12.6)

hono NPM version =0.5.10, =1.0.1, =1.0.0, =0.1.0, =0.1.0, =0.1.6, =0.1.0, =1.0.0, =0.3.2, =0.1.0, =1.0.0, =1.0.1 and more Source cves: unknown CVE Source advisory: OSV:GHSA-V8W9-8MX6-G223...

pqc-combo (=0.1.0), pqc-fips (=0.0.3) +1 more potentially affected by unknown CVE via libcrux-ml-dsa (=0.0.4)

libcrux-ml-dsa CARGO version =0.0.4 is affected by a known vulnerability. The following packages have a transitive dependency on libcrux-ml-dsa and may be impacted: - pqc-combo =0.1.0 - pqc-fips =0.0.3 - pqc-nostd =0.1.0 Source cves: unknown CVE Source advisory: OSV:RUSTSEC-2026-0076...