[Snyk] Security upgrade babelify from 7.3.0 to 8.0.0 #85

Security Report

You have successfully remediated 55 vulnerabilities, but introduced 3 new vulnerabilities in this branch.

❌ New vulnerabilities:

CVE	Severity	CVSS Score	Vulnerable Library	Suggested Fix	Issue
CVE-2021-27292 Path to dependency file: /package.json Path to vulnerable library: /package.json Dependency Hierarchy: -> prop-types-15.6.0.tgz (Root Library) -> fbjs-0.8.16.tgz -> ❌ ua-parser-js-0.7.17.tgz (Vulnerable Library)	High	7.5	ua-parser-js-0.7.17.tgz	Upgrade to version: ua-parser-js - 0.7.24	#54
CVE-2020-7793 Path to dependency file: /package.json Path to vulnerable library: /package.json Dependency Hierarchy: -> prop-types-15.6.0.tgz (Root Library) -> fbjs-0.8.16.tgz -> ❌ ua-parser-js-0.7.17.tgz (Vulnerable Library)	High	7.5	ua-parser-js-0.7.17.tgz	Upgrade to version: 0.7.23	#68
CVE-2020-7733 Path to dependency file: /package.json Path to vulnerable library: /package.json Dependency Hierarchy: -> prop-types-15.6.0.tgz (Root Library) -> fbjs-0.8.16.tgz -> ❌ ua-parser-js-0.7.17.tgz (Vulnerable Library)	High	7.5	ua-parser-js-0.7.17.tgz	Upgrade to version: ua-parser-js - 0.7.22	#35

✔️ Remediated vulnerabilities:

CVE	Vulnerable Library
CVE-2021-42581	ramda-0.24.1.tgz
CVE-2019-20922	handlebars-4.0.11.tgz
CVE-2019-10744	lodash-4.17.11.tgz
CVE-2021-37712	tar-4.4.1.tgz
CVE-2021-3803	nth-check-1.0.1.tgz
CVE-2018-20834	tar-4.4.1.tgz
CVE-2020-28500	lodash-4.17.11.tgz
CVE-2020-7598	minimist-1.2.0.tgz
CVE-2021-23364	browserslist-4.1.2.tgz
CVE-2022-46175	json5-0.5.1.tgz
CVE-2020-7608	yargs-parser-9.0.2.tgz
CVE-2019-10747	set-value-0.4.3.tgz
CVE-2022-21222	css-what-2.1.0.tgz
CVE-2019-10744	lodash-4.17.5.tgz
CVE-2021-23337	lodash-4.17.5.tgz
WS-2020-0450	handlebars-4.0.11.tgz
CVE-2019-1010266	lodash-4.17.5.tgz
CVE-2021-32804	tar-4.4.1.tgz
CVE-2022-38900	decode-uri-component-0.2.0.tgz
CVE-2018-16487	lodash-4.17.5.tgz
CVE-2019-19919	handlebars-4.0.11.tgz
CVE-2021-44906	minimist-0.0.10.tgz
CVE-2021-23440	set-value-0.4.3.tgz
CVE-2021-37701	tar-4.4.1.tgz
CVE-2021-32803	tar-4.4.1.tgz
CVE-2020-7598	minimist-0.0.8.tgz
CVE-2021-23440	set-value-2.0.0.tgz
WS-2018-0347	eslint-4.17.0.tgz
CVE-2020-28469	glob-parent-3.1.0.tgz
CVE-2019-10746	mixin-deep-1.3.1.tgz
WS-2019-0064	handlebars-4.0.11.tgz
CVE-2021-44906	minimist-1.2.0.tgz
WS-2019-0425	mocha-5.2.0.tgz
WS-2019-0032	js-yaml-3.10.0.tgz
CVE-2019-10747	set-value-2.0.0.tgz
CVE-2021-23358	underscore-1.4.4.tgz
WS-2019-0103	handlebars-4.0.11.tgz
CVE-2021-23337	lodash-4.17.11.tgz
CVE-2023-28155	request-2.88.0.tgz
WS-2019-0063	js-yaml-3.10.0.tgz
CVE-2020-28500	lodash-4.17.5.tgz
CVE-2020-8203	lodash-4.17.5.tgz
CVE-2019-20920	handlebars-4.0.11.tgz
CVE-2020-7598	minimist-0.0.10.tgz
CVE-2021-37713	tar-4.4.1.tgz
CVE-2019-20149	kind-of-6.0.2.tgz
CVE-2018-6341	react-dom-16.2.0.tgz
WS-2021-0638	mocha-5.2.0.tgz
CVE-2021-23383	handlebars-4.0.11.tgz
CVE-2021-23369	handlebars-4.0.11.tgz
WS-2018-0589	nwmatcher-1.4.3.tgz
CVE-2021-44906	minimist-0.0.8.tgz
CVE-2020-8203	lodash-4.17.11.tgz
CVE-2017-18869	chownr-1.0.1.tgz
CVE-2022-3517	minimatch-3.0.4.tgz

Base branch total remaining vulnerabilities: 57
Base branch commit: null

Total libraries scanned: 17

Scan token: b51911d4a5ee43f5a7f038b73d6e33ef

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

[Snyk] Security upgrade babelify from 7.3.0 to 8.0.0 #85

[Snyk] Security upgrade babelify from 7.3.0 to 8.0.0 #85

Security Report

Re-running checks...

[Snyk] Security upgrade babelify from 7.3.0 to 8.0.0 #85

Are you sure you want to change the base?

fix: example/package.json to reduce vulnerabilities

[Snyk] Security upgrade babelify from 7.3.0 to 8.0.0 #85

Security Report

Re-running checks...