npm audit found vulnerabilities #82

Open

Labels

audit

Description

@github-actions

github-actions

bot

opened

on Dec 29, 2022

# npm audit report
json5 <2.2.2
Severity: high
Prototype Pollution in JSON5 via Parse Method - https://github.com/advisories/GHSA-9c47-m6qq-7p4h
fix available via `npm audit fix --force`
Will install eslint-plugin-import@2.24.1, which is a breaking change
node_modules/json5
node_modules/tsconfig-paths/node_modules/json5
 tsconfig-paths 3.5.0 - 3.9.0 || 3.11.0 - 3.14.1
 Depends on vulnerable versions of json5
 node_modules/tsconfig-paths
 eslint-plugin-import >=2.24.2
 Depends on vulnerable versions of tsconfig-paths
 node_modules/eslint-plugin-import
3 high severity vulnerabilities
To address all issues (including breaking changes), run:
 npm audit fix --force

Metadata

Assignees

No one assigned

Labels

audit

Projects

No projects

Milestone

No milestone

Relationships

None yet

Development

No branches or pull requests

Navigation Menu

Search code, repositories, users, issues, pull requests...

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

npm audit found vulnerabilities #82

Description

Metadata

Metadata

Assignees

Labels

Projects

Milestone

Relationships

Development

Issue actions