Skip to content

chore(deps): update dependency astro to v5.16.1 #83

New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Merged
conshus merged 1 commit into from
Mar 3, 2026

chore(deps): update dependency astro to v5.16.1

ae74c6d
Select commit
Loading
Failed to load commit list.
Merged

chore(deps): update dependency astro to v5.16.1 #83

chore(deps): update dependency astro to v5.16.1
ae74c6d
Select commit
Loading
Failed to load commit list.
Mend for GitHub.com / WhiteSource Security Check failed Mar 3, 2026 in 4m 26s

Security Report

4 new vulnerabilities were introduced in this branch.

❌ New vulnerabilities:

Vulnerability Severity CVSS Score Vulnerable Library Direct Library Suggested Fix Issue
CVE-2025-65945

Path to dependency file: /tutorials/verify-backend/project/server/package.json

Path to vulnerable library: /tutorials/verify-backend/project/server/package.json

Dependency Hierarchy:

-> auth-1.13.1.tgz (Root Library)

   -> jwt-1.12.1.tgz

     -> jsonwebtoken-9.0.2.tgz

       -> ❌ jws-3.2.2.tgz (Vulnerable Library)

High 7.5 Transitive jws-3.2.2.tgz auth-1.13.1.tgz Transitive 3.2.3 None
CVE-2025-13466

Path to dependency file: /tutorials/verify-backend/project/server/package.json

Path to vulnerable library: /tutorials/verify-backend/project/server/package.json

Dependency Hierarchy:

-> express-5.1.0.tgz (Root Library)

   -> ❌ body-parser-2.2.0.tgz (Vulnerable Library)

Medium 5.8 Transitive body-parser-2.2.0.tgz express-5.1.0.tgz Transitive 2.2.1 None
CVE-2026-2391

Path to dependency file: /tutorials/verify-backend/project/server/package.json

Path to vulnerable library: /tutorials/verify-backend/project/server/package.json

Dependency Hierarchy:

-> express-5.1.0.tgz (Root Library)

   -> ❌ qs-6.14.0.tgz (Vulnerable Library)

Low 3.7 Transitive qs-6.14.0.tgz express-5.1.0.tgz Transitive 6.14.2 None
CVE-2025-15284

Path to dependency file: /tutorials/verify-backend/project/server/package.json

Path to vulnerable library: /tutorials/verify-backend/project/server/package.json

Dependency Hierarchy:

-> express-5.1.0.tgz (Root Library)

   -> ❌ qs-6.14.0.tgz (Vulnerable Library)

Low 3.7 Transitive qs-6.14.0.tgz express-5.1.0.tgz Transitive 6.14.1 None

Base branch total remaining vulnerabilities: 9
Base branch commit: 4e2cf9adce70dc70d3b4bb66d02e43c4a1afa182


Total libraries scanned: 704

Scan token: 834d17e0235640c69b9c5d6366d36e9d

View more details on Mend for GitHub.com