Skip to content

Merge branch 'release-54.28.1'

Debricked / Vulnerability analysis completed Dec 9, 2024 in 23s

An automation triggered a pipeline warning

Found 36 vulnerabilities. An additional 0 vulnerabilities have been marked as unaffected.

Output from Automations

4 rules were checked:


If a new dependency is added where the license risk is at least medium

then notify all users in the group admins by email

✔️ The rule did not trigger. Manage rule


If a dependency contains a vulnerability which has not been marked as unaffected and which has not triggered this rule for this dependency before

then notify all users in the group admins by email

✔️ The rule did not trigger. Manage rule


If there is a dependency where the license risk is at least high

then send a pipeline warning

✔️ The rule did not trigger. Manage rule


If a dependency contains a vulnerability which has not been marked as unaffected

then send a pipeline warning

⚠️ The rule triggered for the following vulnerabilities, causing a pipeline warning. Manage rule

Vulnerability CVSS2 CVSS3 Dependency Dependency Licenses
CVE-2024-47875 N/A 10 dompurify (npm) Apache-2.0
CVE-2024-38999 N/A 10 requirejs (npm) BSD-3-Clause, MIT
CVE-2020-28472 7.5 9.8 aws-sdk (npm) Apache-2.0
CVE-2021-23369 7.5 9.8 handlebars (npm) MIT
CVE-2023-26136 N/A 9.8 tough-cookie (npm) BSD-3-Clause
CVE-2019-19919 7.5 9.8 handlebars (npm) MIT
CVE-2015-8857 7.5 9.8 uglify-js (npm) BSD-2-Clause
CVE-2021-23383 7.5 9.8 handlebars (npm) MIT
CVE-2023-45133 N/A 8.8 @babel/traverse (npm) MIT
CVE-2019-20920 6.8 8.1 handlebars (npm) MIT
CVE-2024-37890 N/A 7.5 ws (npm) MIT
CVE-2024-4068 N/A 7.5 braces (npm) MIT
CVE-2015-8858 7.8 7.5 uglify-js (npm) BSD-2-Clause
CVE-2024-21538 N/A 7.5 cross-spawn (npm) MIT
CVE-2024-45801 N/A 7.3 dompurify (npm) Apache-2.0
CVE-2021-23358 6.5 7.2 underscore (npm) MIT
CVE-2019-11358 4.3 6.1 jquery (npm) MIT
CVE-2015-9251 4.3 6.1 jquery (npm) MIT
CVE-2023-28155 N/A 6.1 request (npm) Apache-2.0
CVE-2020-11023 4.3 6.1 jquery (npm) MIT
CVE-2020-11022 4.3 6.1 jquery (npm) MIT
CVE-2016-10744 4.3 6.1 select2 (npm) Apache-2.0, GPL-2.0-only, MIT
CVE-2015-8861 4.3 6.1 handlebars (npm) MIT
CVE-2024-45047 N/A 6.1 svelte (npm) MIT
CVE-2023-0842 N/A 5.3 xml2js (npm) MIT
CVE-2024-4067 N/A 5.3 micromatch (npm) MIT
CVE-2024-43799 N/A 4.7 send (npm) MIT
CVE-2024-43800 N/A 4.7 serve-static (npm) MIT
debricked-149824 N/A N/A handlebars (npm) MIT
debricked-233523 N/A N/A uglify-js (npm) BSD-2-Clause
debricked-233467 N/A N/A jquery (npm) MIT
debricked-149816 N/A N/A handlebars (npm) MIT
debricked-234250 N/A N/A handlebars (npm) MIT
debricked-149661 N/A N/A handlebars (npm) MIT
debricked-149815 N/A N/A handlebars (npm) MIT
debricked-234255 N/A N/A handlebars (npm) MIT
View more details on Debricked