[Snyk] Security upgrade axios from 1.7.9 to 1.15.1

[snyk-io]

Snyk has created this PR to fix 2 vulnerabilities in the pnpm dependencies of this project.

Snyk changed the following file(s):

• packages/components/package.json

⚠️ Warning

Failed to update the pnpm-lock.yaml, please update manually before merging.

Vulnerabilities that will be fixed with an upgrade:

	Issue	Score
	HTTP Response Splitting SNYK-JS-AXIOS-16298058	730
	Uncontrolled Recursion SNYK-JS-AXIOS-16299923	710

---

Important

• Check the changes in this PR to ensure they won't cause issues with your project.
• Max score is 1000. Note that the real score may have changed since the PR was raised.
• This PR was automatically created by Snyk using the credentials of a real user.

---

Note: You are seeing this because you or someone else with access to this repository has authorized Snyk to open fix PRs.

For more information:
🧐 View latest project report
📜 Customise PR templates
🛠 Adjust project settings
📚 Read about Snyk's upgrade logic

---

Learn how to fix vulnerabilities with free interactive lessons:

🦉 Learn about vulnerability in an interactive lesson of Snyk Learn.

[snyk-io]

✅ Snyk checks have passed. No issues have been found so far.

Status	Scan Engine	Critical	High	Medium	Low	Total (0)
✅	Open Source Security	0	0	0	0	0 issues
✅	Licenses	0	0	0	0	0 issues

💻 Catch issues earlier using the plugins for VS Code, JetBrains IDEs, Visual Studio, and Eclipse.

[socket-security]

Review the following changes in direct dependencies. Learn more about Socket for GitHub.

Diff	Package	Supply Chain Security	Vulnerability	Quality	Maintenance	License
	@​opentelemetry/​sdk-trace-base@​1.27.0
	@​pinecone-database/​pinecone@​4.0.0
	@​qdrant/​js-client-rest@​1.9.0
	@​opentelemetry/​resources@​1.27.0
	@​opentelemetry/​semantic-conventions@​1.27.0
	@​reduxjs/​toolkit@​2.2.7
	@​stripe/​agent-toolkit@​0.1.21
	@​opentelemetry/​sdk-metrics@​1.27.0
	@​opentelemetry/​sdk-node@​0.54.2
	@​supabase/​supabase-js@​2.39.8

View full report

[sonarqubecloud]

Quality Gate passed

Issues
0 New issues
0 Accepted issues

Measures
0 Security Hotspots
0.0% Coverage on New Code
0.0% Duplication on New Code

See analysis details on SonarQube Cloud

[AC-KunalParmar]

Checkmarx One – Scan Summary & Details – e3d31829-eb48-4ed9-94d0-5768d0bf92f2

---

New Issues (55)

Checkmarx found the following issues in this Pull Request

#	Severity	Issue	Source File / Package	Checkmarx Insight
1		CVE-2023-46233	Npm-crypto-js-4.1.1	details Description: The package crypto-js is a JavaScript library of crypto standards. In versions prior to 4.2.0, crypto-js PBKDF2 is 1,000 times weaker than original... Attack Vector: NETWORK Attack Complexity: LOW ID: 7zr3dOKQ0%2FsL6D8rdZK3Nveq8IyLCxVWVODw57vKyrw%3D Vulnerable Package
2		CVE-2025-7783	Npm-form-data-4.0.0	details Description: Use of Insufficiently Random Values vulnerability in form-data allows HTTP Parameter Pollution (HPP). This vulnerability is associated with the pro... Attack Vector: NETWORK Attack Complexity: HIGH ID: QeG%2BxfWqmNXjmABb0%2Fi6gySo4fiZjEgGgqgvubSJ3FA%3D Vulnerable Package
3		CVE-2026-33937	Npm-handlebars-4.7.8	details Description: Handlebars provides the power necessary to let users build semantic templates. In versions 4.0.0 through 4.7.8, `Handlebars.compile()` accepts a pr... Attack Vector: NETWORK Attack Complexity: LOW ID: GyPZr5BpVXLXoXGv%2F5NQzLeTu1r3ePPiIXExKu0wR4E%3D Vulnerable Package
4		CVE-2026-4800	Npm-lodash-4.17.21	details Description: The fix for CVE-2021-23337 added validation for the variable option in _.template but did not apply the same validation to "options.imports" key na... Attack Vector: NETWORK Attack Complexity: LOW ID: ytvTupqvCWdXqCAKobHzxojNgvzW4LUQ0auw7cijpDY%3D Vulnerable Package
5		CVE-2022-31129	Npm-moment-2.29.3	details Description: moment is a JavaScript date library for parsing, validating, manipulating, and formatting dates. Affected versions of moment were found to use an i... Attack Vector: NETWORK Attack Complexity: LOW ID: LKV%2BYqB8QcXEUMSxkQUqj9ez65IctntxsbkRMi3oXTU%3D Vulnerable Package
6		CVE-2024-23331	Npm-vite-5.0.2	details Description: Vite is a frontend tooling framework for javascript. The Vite dev server option `server.fs.deny` can be bypassed on case-insensitive file systems u... Attack Vector: NETWORK Attack Complexity: LOW ID: q9CZNbV%2FNXai9yzVubrfXYluqw44Vj4j62zknSGwtxw%3D Vulnerable Package
7		CVE-2024-4367	Npm-pdfjs-dist-3.7.107	details Description: A type check was missing when handling fonts in PDF.js, which would allow arbitrary JavaScript execution in the PDF.js context. This issue affects ... Attack Vector: NETWORK Attack Complexity: LOW ID: KfuB%2Fn6NL4I3o3YUKAx0AUEUY5ISJLRWpqpeiWjEtFs%3D Vulnerable Package
8		CVE-2025-14874	Npm-nodemailer-6.9.14	details Description: A flaw was found in Nodemailer versions through 7.0.10. This vulnerability allows a Denial-of-Service (DoS) via a crafted email address header that... Attack Vector: NETWORK Attack Complexity: LOW ID: QPzne%2Bf2%2BTzP%2B%2Bx7ypoOSG6%2BxnNgYJO8kIcfDt7gHXo%3D Vulnerable Package
9		CVE-2025-31125	Npm-vite-5.0.2	details Description: Vite is a frontend tooling framework for javascript. Vite exposes the content of non-allowed files using `?inline&import` or `?raw?import`. Only ap... Attack Vector: NETWORK Attack Complexity: LOW ID: SFKxkS9%2F7q4fg8EaVxY3GWAvFTpq6skXvO7K7QUWgzs%3D Vulnerable Package
10		CVE-2025-47935	Npm-multer-1.4.5-lts.1	details Description: Multer is a Node.js middleware for handling "multipart/form-data". In versions prior to 2.0.0 are vulnerable to a resource exhaustion and memory le... Attack Vector: NETWORK Attack Complexity: LOW ID: 4ukL%2FUS2UBx%2BJFBsPOFkoNFONKRgm3siYOAGyBUoJRQ%3D Vulnerable Package
11		CVE-2025-47944	Npm-multer-1.4.5-lts.1	details Description: Multer is a Node.js middleware for handling "multipart/form-data". A vulnerability that is present in versions 1.0.0 through 1.4.5-lts.2, and 2.0.0... Attack Vector: NETWORK Attack Complexity: LOW ID: YvAvt5xGCj4YkJmR5eu35FKxsbFl9kZbJzSN9YJIWkk%3D Vulnerable Package
12		CVE-2025-48997	Npm-multer-1.4.5-lts.1	details Description: Multer is a Node.js middleware for handling "multipart/form-data". A vulnerability allows an attacker to trigger a Denial of Service (DoS) by sendi... Attack Vector: NETWORK Attack Complexity: LOW ID: jDRm4RblAP5Y8lRtAfHt2a%2B7o7o140M%2FkE%2FTwSDM%2FAM%3D Vulnerable Package
13		CVE-2025-66414	Npm-@modelcontextprotocol/sdk-1.10.1	details Description: MCP TypeScript SDK is the official TypeScript SDK for Model Context Protocol servers and clients. Prior to 1.24.0, The Model Context Protocol (MCP)... Attack Vector: NETWORK Attack Complexity: LOW ID: LbNcIKrUxNmPHSEXRhZ5f8DnzzihTBGIrJTg5zT2b6w%3D Vulnerable Package
14		CVE-2025-7338	Npm-multer-1.4.5-lts.1	details Description: Multer is a Node.js middleware for handling `multipart/form-data`. A vulnerability that is present in versions 1.4.4-lts.1, 1.4.5-lts.1 through 1.4... Attack Vector: NETWORK Attack Complexity: LOW ID: rXgNiLcjKQCJCX%2FQASxKO867cScxiCnSpFtk4QRAw1s%3D Vulnerable Package
15		CVE-2025-8101	Npm-linkifyjs-4.1.1	details Description: Improperly Controlled Modification of Object Prototype Attributes ('Prototype Pollution') vulnerability in Linkify (linkifyjs) allows Cross-Site Sc... Attack Vector: NETWORK Attack Complexity: LOW ID: MFK7mWFSSdCofrcXnBz9ouy8M7BtuqTb3Rw8ts%2Bwecg%3D Vulnerable Package
16		CVE-2026-0621	Npm-@modelcontextprotocol/sdk-1.10.1	details Description: Anthropic's MCP TypeScript SDK versions through 1.25.1 contain a Regular Expression Denial-of-Service (ReDoS) vulnerability in the "UriTemplate" cl... Attack Vector: NETWORK Attack Complexity: LOW ID: 823V3JLCdsI%2BlUS5ZpY%2Bm%2BzveQ5KN%2BiNOWCC0UQQ7QE%3D Vulnerable Package
17		CVE-2026-2359	Npm-multer-1.4.5-lts.1	details Description: Multer is a node.js middleware for handling `multipart/form-data`. A vulnerability in Multer prior to version 2.1.0 allows an attacker to trigger a... Attack Vector: NETWORK Attack Complexity: LOW ID: 8JHP2FSOJ6afv7z%2Fq7ZEVJ%2FDJ0qe%2BYsPrDjvSbYwOZk%3D Vulnerable Package
18		CVE-2026-25536	Npm-@modelcontextprotocol/sdk-1.10.1	details Description: MCP TypeScript SDK is the official TypeScript SDK for Model Context Protocol servers and clients. From version 1.10.0 through 1.25.3, cross-client ... Attack Vector: NETWORK Attack Complexity: LOW ID: tmjDzqHW1Z9beE39vgzZkYKreewEKgvV0Kz%2FOG2U3d4%3D Vulnerable Package
19		CVE-2026-3304	Npm-multer-1.4.5-lts.1	details Description: Multer is a node.js middleware for handling `multipart/form-data`. A vulnerability in Multer prior to version 2.1.0 and 3.0.0-alpha1 allows an att... Attack Vector: NETWORK Attack Complexity: LOW ID: q7roJEY3t%2Fa%2BeV9cUqotm6NRtUa1Z3mH4abZzxessb4%3D Vulnerable Package
20		CVE-2026-33938	Npm-handlebars-4.7.8	details Description: Handlebars provides the power necessary to let users build semantic templates. In versions 4.0.0 through 4.7.8, the `@partial-block` special variab... Attack Vector: NETWORK Attack Complexity: HIGH ID: n5%2FrChK1i5Is5By9NIXqwOcs3%2BRNlxMOll5%2BAyg29RM%3D Vulnerable Package
21		CVE-2026-33939	Npm-handlebars-4.7.8	details Description: Handlebars provides the power necessary to let users build semantic templates. In versions 4.0.0 through 4.7.8, when a Handlebars template contains... Attack Vector: NETWORK Attack Complexity: LOW ID: wReepqtTBnGw3efjOUyzIFAD%2Fe7gCgLtpghm5ed923M%3D Vulnerable Package
22		CVE-2026-33940	Npm-handlebars-4.7.8	details Description: Handlebars provides the power necessary to let users build semantic templates. In versions 4.0.0 through 4.7.8, a crafted object placed in the temp... Attack Vector: NETWORK Attack Complexity: HIGH ID: %2FXH1f8pgUV2SgZ%2FgzBeF%2B3jEypsrTIiBAMf2POKgM9M%3D Vulnerable Package
23		CVE-2026-33941	Npm-handlebars-4.7.8	details Description: Handlebars provides the power necessary to let users build semantic templates. In versions 4.0.0 through 4.7.8, the Handlebars CLI precompiler (`bi... Attack Vector: LOCAL Attack Complexity: LOW ID: mCD0uP3gg3dbKgdm02YsQ9ZV7ZmIuqRV6epO9LDH5Z4%3D Vulnerable Package
24		CVE-2026-3520	Npm-multer-1.4.5-lts.1	details Description: Multer is a node.js middleware for handling `multipart/form-data`. A vulnerability in Multer prior to version 2.1.1 allows an attacker to trigger a... Attack Vector: NETWORK Attack Complexity: LOW ID: fUsAsvYqVwjktV7XSM86hyR09rSOOhWFm2aouzlfUJk%3D Vulnerable Package
25		Cx62f5bb1b-fa5e	Npm-moment-2.29.3	details Description: A Regular Expression Denial of Service (ReDoS) in moment 2.18 through 2.29.3 makes the server unavailable when a specially crafted input is provide... Attack Vector: NETWORK Attack Complexity: LOW ID: OH8X9jINVHtLXUIiKvqe9OIktgloM9tk2n7YbHV7omA%3D Vulnerable Package
26		Cxb5e411c7-17b4	Npm-moment-timezone-0.5.34	details Description: Command Injection in "moment-timezone". This issue affects versions 0.1.0 prior to 0.5.35. Attack Vector: NETWORK Attack Complexity: LOW ID: YwEuXT5IMZhGzZG%2BBxu45M7h7KcPEymcrPtB13fkzL0%3D Vulnerable Package
27		CVE-2023-26144	Npm-graphql-16.6.0	details Description: The package graphql is in version 16.3.x prior to 16.8.1, and 17.0.x prior to 17.0.0-alpha.3 are vulnerable to Denial of Service (DoS) due to insuf... Attack Vector: NETWORK Attack Complexity: LOW ID: uw1T7WeTmic%2BP8MqSMQfm2SyfXn7OORJGczKDdA0T1s%3D Vulnerable Package
28		CVE-2023-49293	Npm-vite-5.0.2	details Description: Vite is a website frontend framework. When Vite's HTML transformation is invoked manually via `server.transformIndexHtml`, the original request URL... Attack Vector: NETWORK Attack Complexity: LOW ID: bRXj6GSToePEciCwmPKAyknTKvhU98ZRhb6DJP%2FsSr0%3D Vulnerable Package
29		CVE-2024-21501	Npm-sanitize-html-2.11.0	details Description: The package sanitize-html versions prior to 2.12.1 are vulnerable to Information Exposure when used on the backend and with the style attribute all... Attack Vector: NETWORK Attack Complexity: LOW ID: eqga98JSVWWSJPMLQ01m2ayuCAgikSrJ2FmWWZ79zvk%3D Vulnerable Package
30		CVE-2024-29041	Npm-express-4.17.3	details Description: Express.js minimalist web framework for node. Express.js versions prior to 4.19.2, and 5.0.x prior to 5.0.0-beta.3 are affected by an open redirect... Attack Vector: NETWORK Attack Complexity: LOW ID: 2hXaEuajvFGrQnwRcY%2B%2FwgnpPU8u%2BsUo8Ym2w2CRWPM%3D Vulnerable Package
31		CVE-2024-31207	Npm-vite-5.0.2	details Description: Vite (French word for "quick", pronounced "/vit/", like "veet") is a frontend build tooling to improve the frontend development experience. "server... Attack Vector: NETWORK Attack Complexity: HIGH ID: of4ZJ%2BQDoha9OC8eQegeph4ZNZEHxc8W2JYtepEEPR0%3D Vulnerable Package
32		CVE-2024-43796	Npm-express-4.17.3	details Description: Express.js minimalist web framework for node. In express versions prior to 4.20.0 and 5.0.x prior to 5.0.0, passing untrusted user input even after... Attack Vector: NETWORK Attack Complexity: HIGH ID: ez74199ocdYlfR5yO%2B93ylsK6qPoJHgH8vLuOpnmrfc%3D Vulnerable Package
33		CVE-2024-45811	Npm-vite-5.0.2	details Description: Vite a frontend build tooling framework for JavaScript. In versions through 3.2.10, 4.0.0-alpha.0 through 4.5.3, 5.0.0-beta.0 through 5.1.7, 5.2.0-... Attack Vector: ADJACENT NETWORK Attack Complexity: HIGH ID: NYu17ZC2oNllKXofdaP1LweVmfok7mWm6Hl%2FP09lEPY%3D Vulnerable Package
34		CVE-2024-45812	Npm-vite-5.0.2	details Description: Vite a frontend build tooling framework for javascript. In vite versions through 3.2.10, 4.0.0-alpha.0 through 4.5.3, 5.0.0-beta.0 through 5.1.7, 5... Attack Vector: NETWORK Attack Complexity: HIGH ID: gAEtN%2FoLMgi%2Fjys59%2FGOuz4untkPBudION%2FgvD353v8%3D Vulnerable Package
35		CVE-2025-11849	Npm-mammoth-1.5.1	details Description: Versions of the Python package mammoth from 0.3.25 through 1.10.0; versions of the npm package mammoth from 0.3.25 through 1.10.0; versions of the ... Attack Vector: NETWORK Attack Complexity: LOW ID: 7yHMklHidl%2Bd34yiST%2BupLj8ogyC%2FfCtIdoo7Fus5HQ%3D Vulnerable Package
36		CVE-2025-13033	Npm-nodemailer-6.9.14	details Description: The email parsing library incorrectly handles quoted local-parts containing '@' in versions through 7.0.6. This leads to misrouting of email recipi... Attack Vector: NETWORK Attack Complexity: LOW ID: Evl6dI4HMLEUnCVQYg4xOcdGXg0sO484C0RDju%2FZCYc%3D Vulnerable Package
37		CVE-2025-13465	Npm-lodash-4.17.21	details Description: Lodash versions from 4.0.0 through 4.17.22 are vulnerable to Prototype Pollution in the "_.unset" and "_.omit" functions. An attacker can pass craf... Attack Vector: NETWORK Attack Complexity: LOW ID: Ag8v%2B0A0vxUEYZV4YSLh4odpGD5n9jj4HIDp6FKQYns%3D Vulnerable Package
38		CVE-2025-24010	Npm-vite-5.0.2	details Description: Vite is a frontend tooling framework for JavaScript. Vite allowed any websites to send any requests to the development server and read the response... Attack Vector: NETWORK Attack Complexity: LOW ID: GkcnpxOFMuIgPXKAIOjY9BUElZ7VphN7ghJsIChssVE%3D Vulnerable Package
39		CVE-2025-30208	Npm-vite-5.0.2	details Description: Vite, a provider of frontend development tooling, has a vulnerability in versions through 4.5.9, 5.0.0 through 5.4.14, 6.0.0 through 6.0.11, 6.1.0 ... Attack Vector: NETWORK Attack Complexity: HIGH ID: qjrPXeeTYl9OzCBciPpLga6ttwppsU2dXQ%2B3Jsgi7EA%3D Vulnerable Package
40		CVE-2025-31486	Npm-vite-5.0.2	details Description: A vulnerability in Vite allows the contents of arbitrary files to be returned to the browser. By appending "?.svg" along with "?.wasm?init" or sett... Attack Vector: NETWORK Attack Complexity: HIGH ID: 7eekNliNDdzGyUE2aoq%2BAClwwAPehnrU%2FhdLmxb6pQc%3D Vulnerable Package
41		CVE-2025-32395	Npm-vite-5.0.2	details Description: Vite is a frontend tooling framework for JavaScript. The contents of arbitrary files can be returned to the browser if the dev server is running on... Attack Vector: NETWORK Attack Complexity: LOW ID: DRz9rljMt4Ygi5dIajVWYahKf4L7e1ywgV%2B9JMi6SMs%3D Vulnerable Package
42		CVE-2025-46565	Npm-vite-5.0.2	details Description: Vite is a frontend tooling framework for javascript. In vite package versions through 4.5.13, 5.0.0-beta.0 through 5.4.18, 6.0.0-alpha.0 through 6.... Attack Vector: NETWORK Attack Complexity: LOW ID: NhvyLU%2BkD6irtgUC4WaQ9arMCQgfL%2B0X%2B0%2BwSl1oMy4%3D Vulnerable Package
43		CVE-2025-59288	Npm-playwright-1.35.0	details Description: In versions prior to 1.55.1, improper verification of the cryptographic signature in Playwright allows an unauthorized attacker to perform spoofin... Attack Vector: ADJACENT_NETWORK Attack Complexity: HIGH ID: ee3cGPuuQOcilNLPgIlh6lzszqXztdGTxlSeuo2Z6Ok%3D Vulnerable Package
44		CVE-2025-60542	Npm-typeorm-0.3.6	details Description: SQL Injection vulnerability in TypeORM prior to 0.3.26-dev.d57fe3b via a crafted request to the repository. save or repository. Update due to the S... Attack Vector: NETWORK Attack Complexity: LOW ID: %2FXO%2BJyoOhHyii%2BdmfMEY0Hv%2BwzLq6fkEDiY9iRY%2FTaU%3D Vulnerable Package
45		CVE-2025-62718	Npm-axios-1.7.9	details Description: Axios is a promise based HTTP client for the browser and Node.js. Prior to 1.15.0, Axios does not correctly handle hostname normalization when chec... Attack Vector: NETWORK Attack Complexity: LOW ID: T6CkK58yXCBTAVvD7fEtLipufrm9v8dCJm7ImalSNJk%3D Vulnerable Package
46		CVE-2025-68470	Npm-react-router-6.3.0	details Description: React Router is a router for React. In versions 6.0.0 through 6.30.1 and 7.0.0 through 7.9.6-pre.0, an attacker-supplied path can be crafted so tha... Attack Vector: NETWORK Attack Complexity: LOW ID: LnnkBrnAcnrIuj9kaJDdkek8k%2BxjHToqpZf9f70K7oU%3D Vulnerable Package
47		CVE-2026-33916	Npm-handlebars-4.7.8	details Description: Handlebars provides the power necessary to let users build semantic templates. In versions 4.0.0 through 4.7.8, `resolvePartial()` in the Handlebar... Attack Vector: NETWORK Attack Complexity: HIGH ID: IfzsAfeBqr6cHQOEUSyDcYyNYF5lkvOwOi1RCsBzJmQ%3D Vulnerable Package
48		CVE-2026-40175	Npm-axios-1.7.9	details Description: Axios is a promise-based HTTP client for the browser and Node.js. Prior to 0.31.0 and 1.x prior to 1.15.0, the Axios library is vulnerable to a spe... Attack Vector: NETWORK Attack Complexity: HIGH ID: 2rli8jkAkYdneVtlF%2FtwNr2mVasQBInVWtAqzQPo1lg%3D Vulnerable Package
49		Cx57f1d4f0-ebb7	Npm-handlebars-4.7.8	details Description: The prototype method blocklist in `lib/handlebars/internal/proto-access.js` blocks `constructor`, `__defineGetter__`, `__defineSetter__`, and `__lo... Attack Vector: NETWORK Attack Complexity: HIGH ID: YjUOmvw1UyM7vGbAZigs8CewWPqEv7SUyOl2RW2KJAA%3D Vulnerable Package
50		Cx7d5e6fa7-2030	Npm-nodemailer-6.9.14	details Description: In nodemailer versions through 7.0.10, a Denial-of-Service (DoS) can occur that immediately halts the system due to the use of an unsafe function. ... Attack Vector: NETWORK Attack Complexity: LOW ID: bRCHiRJ%2FLnBEMlRbtLxo4nGC%2FjW4jSIAqpy2BWT8r%2Bw%3D Vulnerable Package
51		Cx88793d01-c25f	Npm-moment-timezone-0.5.34	details Description: Cleartext Transmission of Sensitive Information in moment-timezone. This issue affects versions 0.1.0 through 0.5.34. Attack Vector: NETWORK Attack Complexity: LOW ID: OizdV6wT1IcLwQf%2B%2FRTc2IcVBv%2BTQlEmVZ8GVbfMFhY%3D Vulnerable Package
52		Missing_HSTS_Header	docker/worker/healthcheck/healthcheck.js: 7	Attack Vector
53		CVE-2025-58751	Npm-vite-5.0.2	details Description: Vite is a frontend tooling framework for JavaScript. Prior to versions 7.1.5, 7.0.7, 6.3.6, and 5.4.20, files starting with the same name with the ... Attack Vector: NETWORK Attack Complexity: LOW ID: A%2FGNcw5RKc9TDwbpqKSVIglqzyDlE5k7xJ8gZ9RZjHM%3D Vulnerable Package
54		CVE-2025-58752	Npm-vite-5.0.2	details Description: Vite is a frontend tooling framework for JavaScript. In Vite versions through 5.4.19, 6.x through 6.3.5, 7.0.x through 7.0.6 and 7.1.x through 7.1.... Attack Vector: NETWORK Attack Complexity: LOW ID: ZJbBMmambEjBSQz9UmoFMd5pWhBwjz%2FHrgaxzQZtBmo%3D Vulnerable Package
55		Missing_CSP_Header	docker/worker/healthcheck/healthcheck.js: 7	Attack Vector

---

Communicate with Checkmarx by submitting a PR comment with @Checkmarx followed by one of the supported commands. Learn about the supported commands here.