Skip to content

Merge pull request #2604 from exadel-inc/dependabot/npm_and_yarn/sema…

Mend Bolt for GitHub / WhiteSource Security Check succeeded Aug 21, 2024 in 4m 19s

Security Report

The Security Check found 2 vulnerabilities.

CVE Severity CVSS Score Vulnerable Library Suggested Fix Issue
MSC-2024-8222

Path to dependency file: /package.json

Path to vulnerable library: /node_modules/intersection-observer/package.json

Dependency Hierarchy:

-> @exadel/esl-website-4.18.1.tgz (Root Library)

   -> ❌ intersection-observer-0.12.2.tgz (Vulnerable Library)

Critical 9.8 intersection-observer-0.12.2.tgz #2491
CVE-2024-4067

Path to dependency file: /package.json

Path to vulnerable library: /node_modules/micromatch/package.json

Dependency Hierarchy:

-> esl-4.18.1.tgz (Root Library)

   -> jest-29.7.0.tgz

     -> core-29.7.0.tgz

       -> ❌ micromatch-4.0.7.tgz (Vulnerable Library)

Medium 5.3 micromatch-4.0.7.tgz #2406

Total libraries scanned: 796
Scan token: 9dd8a751c7b14cd18aa3ed8ca3883843
View more details on Mend Bolt for GitHub