26517 matches found
@achinet/nestjs-async (>=0.1.0 <=0.2.0), @asyncapi-actions-test/trusted-publishing-test_asyncapi-cli (>=4.1.3 <=5.4.0) +16 more potentially affected by unknown CVE via @asyncapi/modelina (=5.10.1)
@asyncapi/modelina NPM version =5.10.1 is affected by a known vulnerability. The following packages have a transitive dependency on @asyncapi/modelina and may be impacted: - @achinet/nestjs-async =0.1.0, =4.1.3, =2.5.0, =2.8.3, =0.2.0, =5.2.2, =0.54.0, =1.4.14, =1.8.0, =0.2.0, =2.0.0, =0.1.0,...
@cycle-mega-driver/database (>=0.2.1 <=0.3.2), @fluidnotions/rx-pouch (>=0.6.7 <=0.6.8) +2 more potentially affected by unknown CVE via flatten-unflatten (=1.0.0)
flatten-unflatten NPM version =1.0.0 is affected by a known vulnerability. The following packages have a transitive dependency on flatten-unflatten and may be impacted: - @cycle-mega-driver/database =0.2.1, =0.6.7, =1.0.0, =0.3.0, =0.6.9 Source cves: unknown CVE Source advisory:...
@nmime/nestjs-asyncapi (>=2.0.0 <=2.0.7) potentially affected by unknown CVE via @asyncapi/nodejs-ws-template (=0.10.0)
@asyncapi/nodejs-ws-template NPM version =0.10.0 is affected by a known vulnerability. The following packages have a transitive dependency on @asyncapi/nodejs-ws-template and may be impacted: - @nmime/nestjs-asyncapi =2.0.0, =2.0.7 Source cves: unknown CVE Source advisory:...
axios-basic-logger (=1.0.0), react-micromodal.js (=1.0.0) potentially affected by unknown CVE via pico-uid (=1.0.2)
pico-uid NPM version =1.0.2 is affected by a known vulnerability. The following packages have a transitive dependency on pico-uid and may be impacted: - axios-basic-logger =1.0.0 - react-micromodal.js =1.0.0 Source cves: unknown CVE Source advisory: SNYK:JS-PICOUID-14103684...
@ichidao/ichi-sdk (>=0.0.63 <=0.0.249), @strkfarm/sdk (>=1.0.8 <=1.0.16) +3 more potentially affected by unknown CVE via coinmarketcap-api (=3.1.1)
coinmarketcap-api NPM version =3.1.1 is affected by a known vulnerability. The following packages have a transitive dependency on coinmarketcap-api and may be impacted: - @ichidao/ichi-sdk =0.0.63, =1.0.8, =0.0.1, =1.0.0, =1.0.1, =1.0.2 Source cves: unknown CVE Source advisory:...
@asyncapi/cli (>=2.5.0 <=4.1.1), @leandrose/project-documentation (=0.2.0) +2 more potentially affected by unknown CVE via @asyncapi/generator (>=2.11.0 <=2.8.3)
@asyncapi/generator NPM version =2.11.0, =2.5.0, =0.1.0, =0.1.596 - nestjs-asyncapi =2.0.1 Source cves: unknown CVE Source advisory: SNYK:JS-ASYNCAPIGENERATOR-14103255...
postman-cli (>=1.16.0-canary.1 <=1.24.2) potentially affected by unknown CVE via @postman/pm-bin-macos-arm64 (>=1.16.0-canary.1 <=1.24.2)
@postman/pm-bin-macos-arm64 NPM version =1.16.0-canary.1, =1.16.0-canary.1, =1.24.2 Source cves: unknown CVE Source advisory: SNYK:JS-POSTMANPMBINMACOSARM64-14103293...
@cycle-mega-driver/database (>=0.2.1 <=0.3.2), @fluidnotions/rx-pouch (>=0.6.7 <=0.6.8) +3 more potentially affected by unknown CVE via set-nested-prop (=2.0.0)
set-nested-prop NPM version =2.0.0 is affected by a known vulnerability. The following packages have a transitive dependency on set-nested-prop and may be impacted: - @cycle-mega-driver/database =0.2.1, =0.6.7, =1.0.0, =0.3.0, =0.6.9 Source cves: unknown CVE Source advisory:...
module-mobile-js (>=1.3.8 <=1.4.0), react-native-iris-sdk (>=3.3.16 <=3.3.31) potentially affected by unknown CVE via react-native-log-level (=1.2.0)
react-native-log-level NPM version =1.2.0 is affected by a known vulnerability. The following packages have a transitive dependency on react-native-log-level and may be impacted: - module-mobile-js =1.3.8, =3.3.16, =3.3.31 Source cves: unknown CVE Source advisory:...
@collegedunia/newman-mocha (>=0.0.1 <=0.1.1), @dineshparne/postman-cli (>=1.0.0 <=1.0.5) +24 more potentially affected by unknown CVE via @postman/csv-parse (=4.0.2)
@postman/csv-parse NPM version =4.0.2 is affected by a known vulnerability. The following packages have a transitive dependency on @postman/csv-parse and may be impacted: - @collegedunia/newman-mocha =0.0.1, =1.0.0, =1.0.0, =0.0.2, =1.1.1-beta.1, =1.0.34, =4.5.5, =1.0.0, =1.0.0, =1.0.2, =1.0.0,...
@digifox/providers (=5.0.3), @wowpay/react-native-sdk (>=1.0.3 <=1.0.21) +3 more potentially affected by unknown CVE via react-native-websocket (=1.0.2)
react-native-websocket NPM version =1.0.2 is affected by a known vulnerability. The following packages have a transitive dependency on react-native-websocket and may be impacted: - @digifox/providers =5.0.3 - @wowpay/react-native-sdk =1.0.3, =1.0.0, =1.0.0, =1.0.0, =1.0.2 Source cves: unknown CVE...
@affinidi/cli (>=2.1.0 <=2.14.5), @auxx/sdk (>=0.0.1-experimental.1 <=0.0.13) +1 more potentially affected by unknown CVE via @postman/node-keytar (=7.9.3)
@postman/node-keytar NPM version =7.9.3 is affected by a known vulnerability. The following packages have a transitive dependency on @postman/node-keytar and may be impacted: - @affinidi/cli =2.1.0, =0.0.1-experimental.1, =1.0.0, =1.0.5 Source cves: unknown CVE Source advisory:...
@amorist/gatsby-theme-antd (=1.0.0), @antv/f2-site (>=4.0.0-4.0.0-alpha.3.0 <=5.0.1-beta.0) +16 more potentially affected by unknown CVE via gatsby-plugin-cname (=1.0.0)
gatsby-plugin-cname NPM version =1.0.0 is affected by a known vulnerability. The following packages have a transitive dependency on gatsby-plugin-cname and may be impacted: - @amorist/gatsby-theme-antd =1.0.0 - @antv/f2-site =4.0.0-4.0.0-alpha.3.0, =0.9.81, =1.0.0, =1.1.18-beta.0, =0.0.1, =0.0.4,...
@posthog/nuxt (>=0.0.5 <=1.2.8), @rpcbase/vite (>=0.62.0 <=0.84.0) +3 more potentially affected by unknown CVE via posthog-node (>=5.10.0 <=5.13.2)
posthog-node NPM version =5.10.0, =0.0.5, =0.62.0, =20.7.1-alpha.134, =0.0.0-client-js-listmessages-agentid-fix-20251119175531, =1.0.0-beta.9 Source cves: unknown CVE Source advisory: SNYK:JS-POSTHOGNODE-14103346...
@vex-chat/spire (>=1.0.0 <=2.5.0) potentially affected by unknown CVE via @asyncapi/web-component (=2.6.5)
@asyncapi/web-component NPM version =2.6.5 is affected by a known vulnerability. The following packages have a transitive dependency on @asyncapi/web-component and may be impacted: - @vex-chat/spire =1.0.0, =2.5.0 Source cves: unknown CVE Source advisory: SNYK:JS-ASYNCAPIWEBCOMPONENT-14103281...
@asyncapi/server-api (>=0.16.0 <=0.16.23) potentially affected by unknown CVE via @asyncapi/go-watermill-template (=0.2.75)
@asyncapi/go-watermill-template NPM version =0.2.75 is affected by a known vulnerability. The following packages have a transitive dependency on @asyncapi/go-watermill-template and may be impacted: - @asyncapi/server-api =0.16.0, =0.16.23 Source cves: unknown CVE Source advisory:...
@asyncapi/server-api (>=0.16.0 <=0.16.23) potentially affected by unknown CVE via @asyncapi/java-template (=0.2.10)
@asyncapi/java-template NPM version =0.2.10 is affected by a known vulnerability. The following packages have a transitive dependency on @asyncapi/java-template and may be impacted: - @asyncapi/server-api =0.16.0, =0.16.23 Source cves: unknown CVE Source advisory:...
trust-my-travel (>=0.1.0 <=0.1.2), zapier-axios (>=0.1.4 <=0.1.8) potentially affected by unknown CVE via axios-timed (=1.0.0)
axios-timed NPM version =1.0.0 is affected by a known vulnerability. The following packages have a transitive dependency on axios-timed and may be impacted: - trust-my-travel =0.1.0, =0.1.4, =0.1.8 Source cves: unknown CVE Source advisory: SNYK:JS-AXIOSTIMED-14103576...
react-native-modest-storage (=2.0.0) potentially affected by unknown CVE via @tiaanduplessis/json (=2.0.1)
@tiaanduplessis/json NPM version =2.0.1 is affected by a known vulnerability. The following packages have a transitive dependency on @tiaanduplessis/json and may be impacted: - react-native-modest-storage =2.0.0 Source cves: unknown CVE Source advisory: SNYK:JS-TIAANDUPLESSISJSON-14103546...
@lessondesk/schoolbus (>=3.0.43 <=5.2.1) potentially affected by unknown CVE via @tiaanduplessis/react-progressbar (=1.0.0)
@tiaanduplessis/react-progressbar NPM version =1.0.0 is affected by a known vulnerability. The following packages have a transitive dependency on @tiaanduplessis/react-progressbar and may be impacted: - @lessondesk/schoolbus =3.0.43, =5.2.1 Source cves: unknown CVE Source advisory:...
@asyncapi-actions-test/trusted-publishing-test_asyncapi-cli (>=4.1.3 <=5.4.0), @asyncapi/cli (>=3.3.0 <=6.0.2) +3 more potentially affected by unknown CVE via @asyncapi/problem (=1.0.0)
@asyncapi/problem NPM version =1.0.0 is affected by a known vulnerability. The following packages have a transitive dependency on @asyncapi/problem and may be impacted: - @asyncapi-actions-test/trusted-publishing-testasyncapi-cli =4.1.3, =3.3.0, =0.16.0, =1.4.14, =1.4.50 -...
@asyncapi/server-api (>=0.16.0 <=0.16.23) potentially affected by unknown CVE via @asyncapi/java-spring-template (=1.6.0)
@asyncapi/java-spring-template NPM version =1.6.0 is affected by a known vulnerability. The following packages have a transitive dependency on @asyncapi/java-spring-template and may be impacted: - @asyncapi/server-api =0.16.0, =0.16.23 Source cves: unknown CVE Source advisory:...
@asyncapi/cli (>=2.5.0 <=4.1.1), @asyncapi/generator (>=2.1.3 <=2.11.0) +4 more potentially affected by unknown CVE via @asyncapi/nunjucks-filters (=2.1.0)
@asyncapi/nunjucks-filters NPM version =2.1.0 is affected by a known vulnerability. The following packages have a transitive dependency on @asyncapi/nunjucks-filters and may be impacted: - @asyncapi/cli =2.5.0, =2.1.3, =2.1.4, =0.1.0, =0.1.596 - nestjs-asyncapi =2.0.1 Source cves: unknown CVE...
@achinet/nestjs-async (>=0.1.0 <=0.2.0), @aligov/clark-core (>=3.0.0 <=3.0.1) +37 more potentially affected by unknown CVE via @asyncapi/generator-react-sdk (>=1.1.2 <=1.1.3)
@asyncapi/generator-react-sdk NPM version =1.1.2, =0.1.0, =3.0.0, =4.1.3, =0.24.0, =1.10.14, =0.2.0, =0.1.0, =1.0.0, =0.2.2, =1.3.3, =2.0.0, =0.16.0, =0.16.23 - @asyncapi/template-dart-websocket-client =0.0.1 - @asyncapi/template-java-websocket-quarkus =0.0.1 -...
@achinet/nestjs-async (>=0.1.0 <=0.2.0), @aligov/clark-core (>=3.0.0 <=3.0.1) +69 more potentially affected by unknown CVE via @asyncapi/parser (>=3.0.0-next-major-spec.8 <=3.4.0)
@asyncapi/parser NPM version =3.0.0-next-major-spec.8, =0.1.0, =3.0.0, =4.1.3, =0.24.0, =1.15.0, =0.2.0, =0.1.0, =0.2.57, =3.0.0, =4.0.0, =2.1.1, =0.16.0, =0.41.0-rc.2, =2.1.4, =3.0.0, =4.0.0 and more Source cves: unknown CVE Source advisory: SNYK:JS-ASYNCAPIPARSER-14103272...
@asyncapi/cli (>=3.1.0 <=4.1.1), @asyncapi/html-template (>=3.2.0 <=3.5.0) +16 more potentially affected by unknown CVE via @asyncapi/react-component (>=2.0.0 <=2.6.5)
@asyncapi/react-component NPM version =2.0.0, =3.1.0, =3.2.0, =0.24.0, =2.0.4, =0.0.0-nightly-20241023023252, =0.2.1, =2.6.0, =0.0.2-dev-0b744dd, =2.0.0, =0.0.2-test, =0.0.0-cache-perf-20240625144418, =1.0.0, =1.0.31, =1.0.81 and more Source cves: unknown CVE Source advisory:...
financelabsutilities (>=0.0.8 <=0.0.10) potentially affected by unknown CVE via react-hook-form-persist (=3.0.0)
react-hook-form-persist NPM version =3.0.0 is affected by a known vulnerability. The following packages have a transitive dependency on react-hook-form-persist and may be impacted: - financelabsutilities =0.0.8, =0.0.10 Source cves: unknown CVE Source advisory: SNYK:JS-REACTHOOKFORMPERSIST-141036...
css-dedoupe (>=0.1.0 <=0.1.1) potentially affected by unknown CVE via obj-to-css (=1.0.1)
obj-to-css NPM version =1.0.1 is affected by a known vulnerability. The following packages have a transitive dependency on obj-to-css and may be impacted: - css-dedoupe =0.1.0, =0.1.1 Source cves: unknown CVE Source advisory: SNYK:JS-OBJTOCSS-14103674...
ff-build (>=2.4.0 <=2.6.1) potentially affected by unknown CVE via gulp-inject-envs (=1.2.0)
gulp-inject-envs NPM version =1.2.0 is affected by a known vulnerability. The following packages have a transitive dependency on gulp-inject-envs and may be impacted: - ff-build =2.4.0, =2.6.1 Source cves: unknown CVE Source advisory: SNYK:JS-GULPINJECTENVS-14103633...
@zapier/ai-actions-react (>=0.0.1 <=0.1.11) potentially affected by unknown CVE via @zapier/ai-actions (>=0.0.1 <=0.1.11)
@zapier/ai-actions NPM version =0.0.1, =0.0.1, =0.1.11 Source cves: unknown CVE Source advisory: SNYK:JS-ZAPIERAIACTIONS-14103233...
@zapier/babel-preset-zapier (>=5.0.0 <=6.4.0), babel-preset-zapier (>=2.0.0 <=4.0.0) +1 more potentially affected by unknown CVE via @zapier/browserslist-config-zapier (=1.0.2)
@zapier/browserslist-config-zapier NPM version =1.0.2 is affected by a known vulnerability. The following packages have a transitive dependency on @zapier/browserslist-config-zapier and may be impacted: - @zapier/babel-preset-zapier =5.0.0, =2.0.0, =4.0.0, =9.0.0 Source cves: unknown CVE Source...
@zapier/zapier-sdk-cli (>=0.0.2 <=0.15.14), @zapier/zapier-sdk-mcp (>=0.3.7 <=0.3.39) potentially affected by unknown CVE via @zapier/zapier-sdk (>=0.0.2 <=0.15.4)
@zapier/zapier-sdk NPM version =0.0.2, =0.0.2, =0.3.7, =0.3.39 Source cves: unknown CVE Source advisory: SNYK:JS-ZAPIERZAPIERSDK-14103241...
cleanwork (=0.0.1), tomvisions-toolkit (>=1.0.1 <=1.0.9) potentially affected by unknown CVE via image-to-uri (=1.0.0)
image-to-uri NPM version =1.0.0 is affected by a known vulnerability. The following packages have a transitive dependency on image-to-uri and may be impacted: - cleanwork =0.0.1 - tomvisions-toolkit =1.0.1, =1.0.9 Source cves: unknown CVE Source advisory: SNYK:JS-IMAGETOURI-14103641...
@abtnode/blocklet-services (>=1.16.6 <=1.17.13-beta-20260512-042419-7b556a38), @abtnode/cli (>=1.0.0 <=1.16.34-beta-20241113-102431-65542b84) +446 more potentially affected by unknown CVE via shell-exec (>=1.0.2 <=1.1.2)
shell-exec NPM version =1.0.2, =1.16.6, =1.0.0, =1.16.6, =1.0.0, =0.3.35, =1.5.0, =0.0.0-beta.0, =0.0.0, =2.49.0, =1.0.0, =2.0.0-0, =2.0.0-0, =1.0.16, =1.0.0, =1.2.1, =1.3.16 and more Source cves: unknown CVE Source advisory: SNYK:JS-SHELLEXEC-14103722...
@voiceflow/backend-utils (>=4.8.3 <=5.0.3) potentially affected by unknown CVE via @voiceflow/verror (=1.1.3)
@voiceflow/verror NPM version =1.1.3 is affected by a known vulnerability. The following packages have a transitive dependency on @voiceflow/verror and may be impacted: - @voiceflow/backend-utils =4.8.3, =5.0.3 Source cves: unknown CVE Source advisory: SNYK:JS-VOICEFLOWVERROR-14103444...
@voiceflow/react-chat (>=1.0.0 <=2.62.4) potentially affected by unknown CVE via @voiceflow/sdk-runtime (>=1.10.0 <=1.3.4)
@voiceflow/sdk-runtime NPM version =1.10.0, =1.0.0, =2.62.4 Source cves: unknown CVE Source advisory: SNYK:JS-VOICEFLOWSDKRUNTIME-14103432...
@voiceflow/react-chat (>=1.59.4 <=2.62.4), @voiceflow/sdk-runtime (>=1.18.1 <=1.29.0-alpha.1) potentially affected by unknown CVE via @voiceflow/dtos-interact (>=1.10.0 <=1.26.0)
@voiceflow/dtos-interact NPM version =1.10.0, =1.59.4, =1.18.1, =1.29.0-alpha.1 Source cves: unknown CVE Source advisory: SNYK:JS-VOICEFLOWDTOSINTERACT-14103405...
@voiceflow/google-dfes-types (>=2.16.44 <=2.17.14) potentially affected by unknown CVE via @voiceflow/google-types (>=2.20.44 <=2.21.11)
@voiceflow/google-types NPM version =2.20.44, =2.16.44, =2.17.14 Source cves: unknown CVE Source advisory: SNYK:JS-VOICEFLOWGOOGLETYPES-14103414...
@voiceflow/alexa-types (>=2.14.43 <=2.15.62), @voiceflow/google-dfes-types (>=2.16.44 <=2.17.7) +3 more potentially affected by unknown CVE via @voiceflow/chat-types (>=2.13.100 <=2.14.57)
@voiceflow/chat-types NPM version =2.13.100, =2.14.43, =2.16.44, =2.20.44, =1.60.2, =3.26.33, =3.32.47 Source cves: unknown CVE Source advisory: SNYK:JS-VOICEFLOWCHATTYPES-14103399...
@voiceflow/alexa-types (>=1.1.3 <=1.49.0), @voiceflow/api-sdk (>=1.0.0 <=1.31.6) +6 more potentially affected by unknown CVE via @voiceflow/pino (>=6.11.0 <=6.11.2)
@voiceflow/pino NPM version =6.11.0, =1.1.3, =1.0.0, =1.0.0, =1.1.0, =1.0.0, =1.5.0, =1.10.2, =1.0.0, =1.17.4 Source cves: unknown CVE Source advisory: SNYK:JS-VOICEFLOWPINO-14103426...
@voiceflow/alexa-types (>=2.14.43 <=2.15.62), @voiceflow/api-sdk (>=3.27.18 <=3.28.60) +7 more potentially affected by unknown CVE via @voiceflow/base-types (>=2.100.1 <=2.136.1)
@voiceflow/base-types NPM version =2.100.1, =2.14.43, =3.27.18, =2.13.92, =2.0.0, =2.20.44, =1.60.0, =1.8.0, =2.9.71, =3.26.33, =3.32.47 Source cves: unknown CVE Source advisory: SNYK:JS-VOICEFLOWBASETYPES-14103397...
@voiceflow/alexa-types (>=2.0.0 <=2.16.3), @voiceflow/api-sdk (>=3.0.0 <=3.29.3) +11 more potentially affected by unknown CVE via @voiceflow/common (>=8.10.0 <=8.9.0)
@voiceflow/common NPM version =8.10.0, =2.0.0, =3.0.0, =2.50.1, =2.0.0, =3.0.0, =2.0.0, =2.0.0, =1.0.3, =1.3.3, =1.0.0, =2.0.0, =3.2.20, =1.0.3, =1.7.13 Source cves: unknown CVE Source advisory: SNYK:JS-VOICEFLOWCOMMON-14103402...
@voiceflow/alexa-types (>=2.15.0 <=2.15.62), @voiceflow/google-dfes-types (>=2.17.0 <=2.17.7) +3 more potentially affected by unknown CVE via @voiceflow/voice-types (>=2.10.0 <=2.10.57)
@voiceflow/voice-types NPM version =2.10.0, =2.15.0, =2.17.0, =2.21.0, =1.60.2, =3.30.0, =3.32.47 Source cves: unknown CVE Source advisory: SNYK:JS-VOICEFLOWVOICETYPES-14103447...
@abtnode/blocklet-services (>=1.16.6 <=1.17.13-beta-20260512-042419-7b556a38), @abtnode/cli (>=1.0.0 <=1.16.34-beta-20241113-102431-65542b84) +123 more potentially affected by unknown CVE via kill-port (>=2.0.0 <=2.0.1)
kill-port NPM version =2.0.0, =1.16.6, =1.0.0, =1.16.6, =0.0.0-beta.0, =0.0.0, =2.49.0, =1.0.0, =1.2.1, =1.16.6, =1.1.3, =2.6.0, =1.0.0, =0.1.1, =0.2.8, =0.2.15 and more Source cves: unknown CVE Source advisory: SNYK:JS-KILLPORT-14103850...
@voiceflow/runtime-client-js (>=1.6.1 <=1.17.4) potentially affected by unknown CVE via @voiceflow/runtime (>=1.27.2 <=1.28.0)
@voiceflow/runtime NPM version =1.27.2, =1.6.1, =1.17.4 Source cves: unknown CVE Source advisory: SNYK:JS-VOICEFLOWRUNTIME-14103430...
@voiceflow/widget (>=1.0.3 <=1.7.13) potentially affected by unknown CVE via @voiceflow/react-chat (>=1.0.3 <=1.47.4)
@voiceflow/react-chat NPM version =1.0.3, =1.0.3, =1.7.13 Source cves: unknown CVE Source advisory: SNYK:JS-VOICEFLOWREACTCHAT-14103429...
@voiceflow/alexa-types (>=1.1.3 <=1.49.0), @voiceflow/api-sdk (>=1.0.0 <=1.31.6) +6 more potentially affected by unknown CVE via @voiceflow/pino-pretty (>=4.3.0 <=4.4.0)
@voiceflow/pino-pretty NPM version =4.3.0, =1.1.3, =1.0.0, =1.0.0, =1.1.0, =1.0.0, =1.4.2, =1.10.2, =1.0.0, =1.17.4 Source cves: unknown CVE Source advisory: SNYK:JS-VOICEFLOWPINOPRETTY-14103427...
@asyncapi-actions-test/trusted-publishing-test_asyncapi-cli (>=4.1.3 <=5.4.0), @asyncapi/cli (>=0.36.0 <=6.0.0) +6 more potentially affected by unknown CVE via @asyncapi/bundler (>=0.3.11 <=0.6.4)
@asyncapi/bundler NPM version =0.3.11, =4.1.3, =0.36.0, =0.16.0, =1.4.14, =1.6.3, =0.0.0-beta-20240215154132, =0.3.0, =0.7.1 - trusted-publishing-testasyncapi-cli =4.1.3 Source cves: unknown CVE Source advisory: SNYK:JS-ASYNCAPIBUNDLER-14103249...
@kitalive/sfdx-plugin (>=0.1.2 <=0.1.3), @salesforce/data (>=0.0.3 <=0.1.8) +4 more potentially affected by unknown CVE via template-lib (=1.1.2)
template-lib NPM version =1.1.2 is affected by a known vulnerability. The following packages have a transitive dependency on template-lib and may be impacted: - @kitalive/sfdx-plugin =0.1.2, =0.0.3, =0.0.3, =51.6.0, =7.94.1, =7.115.1 - sfdx-node =3.1.0 Source cves: unknown CVE Source advisory:...
postman-cli (>=1.16.0-canary.1 <=1.24.2) potentially affected by unknown CVE via @postman/pm-bin-windows-x64 (>=1.16.0-canary.1 <=1.24.2)
@postman/pm-bin-windows-x64 NPM version =1.16.0-canary.1, =1.16.0-canary.1, =1.24.2 Source cves: unknown CVE Source advisory: SNYK:JS-POSTMANPMBINWINDOWSX64-14103295...