Skip to content

enko/wiz-form-data-bug

BranchesTags

Folders and files

NameName
Last commit message
Last commit date

Latest commit

 

History

1 Commit
.gitignore
.gitignore
 
 
README.md
README.md
 
 
package-lock.json
package-lock.json
 
 
package.json
package.json
 
 

Repository files navigation

wiz code scan bug

Install the dependencies:

npm ci

Then scan the code:

wizcli dir scan --path . --no-publish --sensitive-data --file-hashes-scan

Boom:

Library vulnerabilities:
    Name: form-data, Version: 4.0.3, Path: /node_modules/jsdom/package.json
        Failed policy: Default vulnerabilities policy
        CVE-2025-7783, Severity: CRITICAL, Source: https://github.com/advisories/GHSA-fjxv-7rqg-78g4
            CVSS score: 9.4
            🩹 Fixed version: 4.0.4

Even though:

❯ jq .version node_modules/form-data/package.json
"4.0.4"

About

No description, website, or topics provided.

Resources

Readme
Activity

Stars

0 stars

Watchers

0 watching

Forks

0 forks
Report repository

Releases

No releases published

Packages

No packages published