[Snyk] Security upgrade babelify from 7.3.0 to 8.0.0 #85
Security Report
You have successfully remediated 55 vulnerabilities, but introduced 3 new vulnerabilities in this branch.
❌ New vulnerabilities:
CVE | Severity | Vulnerable Library | Suggested Fix | Issue | |
---|---|---|---|---|---|
CVE-2021-27292Path to dependency file: /package.json Path to vulnerable library: /package.json Dependency Hierarchy: -> prop-types-15.6.0.tgz (Root Library) -> fbjs-0.8.16.tgz -> ❌ ua-parser-js-0.7.17.tgz (Vulnerable Library) |
7.5 | ua-parser-js-0.7.17.tgz | Upgrade to version: ua-parser-js - 0.7.24 | #54 | |
CVE-2020-7793Path to dependency file: /package.json Path to vulnerable library: /package.json Dependency Hierarchy: -> prop-types-15.6.0.tgz (Root Library) -> fbjs-0.8.16.tgz -> ❌ ua-parser-js-0.7.17.tgz (Vulnerable Library) |
7.5 | ua-parser-js-0.7.17.tgz | Upgrade to version: 0.7.23 | #68 | |
CVE-2020-7733Path to dependency file: /package.json Path to vulnerable library: /package.json Dependency Hierarchy: -> prop-types-15.6.0.tgz (Root Library) -> fbjs-0.8.16.tgz -> ❌ ua-parser-js-0.7.17.tgz (Vulnerable Library) |
7.5 | ua-parser-js-0.7.17.tgz | Upgrade to version: ua-parser-js - 0.7.22 | #35 |
✔️ Remediated vulnerabilities:
CVE | Vulnerable Library |
---|---|
CVE-2021-42581 | ramda-0.24.1.tgz |
CVE-2019-20922 | handlebars-4.0.11.tgz |
CVE-2019-10744 | lodash-4.17.11.tgz |
CVE-2021-37712 | tar-4.4.1.tgz |
CVE-2021-3803 | nth-check-1.0.1.tgz |
CVE-2018-20834 | tar-4.4.1.tgz |
CVE-2020-28500 | lodash-4.17.11.tgz |
CVE-2020-7598 | minimist-1.2.0.tgz |
CVE-2021-23364 | browserslist-4.1.2.tgz |
CVE-2022-46175 | json5-0.5.1.tgz |
CVE-2020-7608 | yargs-parser-9.0.2.tgz |
CVE-2019-10747 | set-value-0.4.3.tgz |
CVE-2022-21222 | css-what-2.1.0.tgz |
CVE-2019-10744 | lodash-4.17.5.tgz |
CVE-2021-23337 | lodash-4.17.5.tgz |
WS-2020-0450 | handlebars-4.0.11.tgz |
CVE-2019-1010266 | lodash-4.17.5.tgz |
CVE-2021-32804 | tar-4.4.1.tgz |
CVE-2022-38900 | decode-uri-component-0.2.0.tgz |
CVE-2018-16487 | lodash-4.17.5.tgz |
CVE-2019-19919 | handlebars-4.0.11.tgz |
CVE-2021-44906 | minimist-0.0.10.tgz |
CVE-2021-23440 | set-value-0.4.3.tgz |
CVE-2021-37701 | tar-4.4.1.tgz |
CVE-2021-32803 | tar-4.4.1.tgz |
CVE-2020-7598 | minimist-0.0.8.tgz |
CVE-2021-23440 | set-value-2.0.0.tgz |
WS-2018-0347 | eslint-4.17.0.tgz |
CVE-2020-28469 | glob-parent-3.1.0.tgz |
CVE-2019-10746 | mixin-deep-1.3.1.tgz |
WS-2019-0064 | handlebars-4.0.11.tgz |
CVE-2021-44906 | minimist-1.2.0.tgz |
WS-2019-0425 | mocha-5.2.0.tgz |
WS-2019-0032 | js-yaml-3.10.0.tgz |
CVE-2019-10747 | set-value-2.0.0.tgz |
CVE-2021-23358 | underscore-1.4.4.tgz |
WS-2019-0103 | handlebars-4.0.11.tgz |
CVE-2021-23337 | lodash-4.17.11.tgz |
CVE-2023-28155 | request-2.88.0.tgz |
WS-2019-0063 | js-yaml-3.10.0.tgz |
CVE-2020-28500 | lodash-4.17.5.tgz |
CVE-2020-8203 | lodash-4.17.5.tgz |
CVE-2019-20920 | handlebars-4.0.11.tgz |
CVE-2020-7598 | minimist-0.0.10.tgz |
CVE-2021-37713 | tar-4.4.1.tgz |
CVE-2019-20149 | kind-of-6.0.2.tgz |
CVE-2018-6341 | react-dom-16.2.0.tgz |
WS-2021-0638 | mocha-5.2.0.tgz |
CVE-2021-23383 | handlebars-4.0.11.tgz |
CVE-2021-23369 | handlebars-4.0.11.tgz |
WS-2018-0589 | nwmatcher-1.4.3.tgz |
CVE-2021-44906 | minimist-0.0.8.tgz |
CVE-2020-8203 | lodash-4.17.11.tgz |
CVE-2017-18869 | chownr-1.0.1.tgz |
CVE-2022-3517 | minimatch-3.0.4.tgz |
Base branch total remaining vulnerabilities: 57
Base branch commit: null
Total libraries scanned: 17
Scan token: b51911d4a5ee43f5a7f038b73d6e33ef