chore(deps): update dependency gulp-imagemin to v8 (master) #43
Security Report
❌ New vulnerabilities:
| CVE | Severity |  CVSS Score |
Vulnerable Library | Suggested Fix | Issue |
|---|---|---|---|---|---|
WS-2019-0266Path to dependency file: /examples/mithril/index.html Path to vulnerable library: /examples/mithril/node_modules/mithril/mithril.js Dependency Hierarchy: -> ❌ mithril-0.2.8.js (Vulnerable Library) |
 High |
8.2 | mithril-0.2.8.js | Upgrade to version: 2.0.3 | None |
CVE-2022-25844Path to dependency file: /examples/angularjs/index.html Path to vulnerable library: /examples/angularjs/node_modules/angular/angular.js,/examples/typescript-angular/node_modules/angular/angular.js,/examples/firebase-angular/node_modules/angular/angular.js Dependency Hierarchy: -> ❌ angular-1.8.3.js (Vulnerable Library) |
High |
7.5 | angular-1.8.3.js | None | |
CVE-2022-25869Path to dependency file: /examples/angularjs/index.html Path to vulnerable library: /examples/angularjs/node_modules/angular/angular.js,/examples/typescript-angular/node_modules/angular/angular.js,/examples/firebase-angular/node_modules/angular/angular.js Dependency Hierarchy: -> ❌ angular-1.8.3.js (Vulnerable Library) |
 Medium |
6.1 | angular-1.8.3.js | None | |
CVE-2020-23064Path to dependency file: /examples/react-backbone/index.html Path to vulnerable library: /examples/react-backbone/node_modules/jquery/dist/jquery.js,/examples/typescript-backbone/node_modules/jquery/dist/jquery.js,/examples/backbone/node_modules/jquery/dist/jquery.js,/examples/canjs/node_modules/jquery/dist/jquery.js,/examples/dijon/node_modules/jquery/dist/jquery.js,/examples/knockback/node_modules/jquery/dist/jquery.js Dependency Hierarchy: -> ❌ jquery-2.2.4.js (Vulnerable Library) |
Medium |
6.1 | jquery-2.2.4.js | Upgrade to version: jquery - 3.5.0 | None |
CVE-2020-11023Path to dependency file: /examples/react-backbone/index.html Path to vulnerable library: /examples/react-backbone/node_modules/jquery/dist/jquery.js,/examples/typescript-backbone/node_modules/jquery/dist/jquery.js,/examples/backbone/node_modules/jquery/dist/jquery.js,/examples/canjs/node_modules/jquery/dist/jquery.js,/examples/dijon/node_modules/jquery/dist/jquery.js,/examples/knockback/node_modules/jquery/dist/jquery.js Dependency Hierarchy: -> ❌ jquery-2.2.4.js (Vulnerable Library) |
Medium |
6.1 | jquery-2.2.4.js | Upgrade to version: jquery - 3.5.0;jquery-rails - 4.4.0 | None |
CVE-2020-11022Path to dependency file: /examples/react-backbone/index.html Path to vulnerable library: /examples/react-backbone/node_modules/jquery/dist/jquery.js,/examples/typescript-backbone/node_modules/jquery/dist/jquery.js,/examples/backbone/node_modules/jquery/dist/jquery.js,/examples/canjs/node_modules/jquery/dist/jquery.js,/examples/dijon/node_modules/jquery/dist/jquery.js,/examples/knockback/node_modules/jquery/dist/jquery.js Dependency Hierarchy: -> ❌ jquery-2.2.4.js (Vulnerable Library) |
Medium |
6.1 | jquery-2.2.4.js | Upgrade to version: jQuery - 3.5.0 | None |
CVE-2019-11358Path to dependency file: /examples/react-backbone/index.html Path to vulnerable library: /examples/react-backbone/node_modules/jquery/dist/jquery.js,/examples/typescript-backbone/node_modules/jquery/dist/jquery.js,/examples/backbone/node_modules/jquery/dist/jquery.js,/examples/canjs/node_modules/jquery/dist/jquery.js,/examples/dijon/node_modules/jquery/dist/jquery.js,/examples/knockback/node_modules/jquery/dist/jquery.js Dependency Hierarchy: -> ❌ jquery-2.2.4.js (Vulnerable Library) |
Medium |
6.1 | jquery-2.2.4.js | Upgrade to version: jquery - 3.4.0 | None |
CVE-2015-9251Path to dependency file: /examples/react-backbone/index.html Path to vulnerable library: /examples/react-backbone/node_modules/jquery/dist/jquery.js,/examples/typescript-backbone/node_modules/jquery/dist/jquery.js,/examples/backbone/node_modules/jquery/dist/jquery.js,/examples/canjs/node_modules/jquery/dist/jquery.js,/examples/dijon/node_modules/jquery/dist/jquery.js,/examples/knockback/node_modules/jquery/dist/jquery.js Dependency Hierarchy: -> ❌ jquery-2.2.4.js (Vulnerable Library) |
Medium |
6.1 | jquery-2.2.4.js | Upgrade to version: jQuery - 3.0.0 | None |
CVE-2023-26118Path to dependency file: /examples/angularjs/index.html Path to vulnerable library: /examples/angularjs/node_modules/angular/angular.js,/examples/typescript-angular/node_modules/angular/angular.js,/examples/firebase-angular/node_modules/angular/angular.js Dependency Hierarchy: -> ❌ angular-1.8.3.js (Vulnerable Library) |
Medium |
5.3 | angular-1.8.3.js | None | |
CVE-2023-26117Path to dependency file: /examples/angularjs/index.html Path to vulnerable library: /examples/angularjs/node_modules/angular/angular.js,/examples/typescript-angular/node_modules/angular/angular.js,/examples/firebase-angular/node_modules/angular/angular.js Dependency Hierarchy: -> ❌ angular-1.8.3.js (Vulnerable Library) |
Medium |
5.3 | angular-1.8.3.js | None | |
CVE-2023-26116Path to dependency file: /examples/angularjs/index.html Path to vulnerable library: /examples/angularjs/node_modules/angular/angular.js,/examples/typescript-angular/node_modules/angular/angular.js,/examples/firebase-angular/node_modules/angular/angular.js Dependency Hierarchy: -> ❌ angular-1.8.3.js (Vulnerable Library) |
Medium |
5.3 | angular-1.8.3.js | None |
✔️ Remediated vulnerabilities:
| CVE | Vulnerable Library |
|---|---|
| CVE-2016-2515 | hawk-1.0.0.tgz |
| CVE-2020-7676 | angular-1.3.15.js |
| CVE-2017-16026 | request-2.51.0.tgz |
| CVE-2021-44906 | minimist-0.2.1.tgz |
| CVE-2019-10744 | lodash-1.0.2.tgz |
| WS-2018-0076 | tunnel-agent-0.3.0.tgz |
| CVE-2023-26116 | angular-1.4.8.js |
| WS-2019-0266 | mithril-0.2.0.js |
| CVE-2023-26117 | angular-1.4.3.js |
| CVE-2018-16487 | lodash-0.9.2.tgz |
| CVE-2021-29059 | is-svg-2.1.0.tgz |
| CVE-2022-33987 | got-5.6.0.tgz |
| CVE-2021-43138 | async-2.6.3.tgz |
| CVE-2022-25869 | angular-1.3.15.js |
| CVE-2022-3517 | minimatch-0.3.0.tgz |
| CVE-2022-25883 | semver-5.7.1.tgz |
| CVE-2020-8244 | bl-1.0.3.tgz |
| CVE-2021-23382 | postcss-2.2.6.tgz |
| CVE-2021-33623 | trim-newlines-1.0.0.tgz |
| CVE-2017-16026 | request-2.11.4.tgz |
| CVE-2017-16137 | debug-0.7.4.tgz |
| CVE-2016-2515 | hawk-1.1.1.tgz |
| CVE-2021-23337 | lodash-1.0.2.tgz |
| CVE-2017-1000048 | qs-5.2.1.tgz |
| CVE-2019-10744 | lodash-3.10.0.js |
| CVE-2022-3517 | minimatch-0.2.14.tgz |
| WS-2014-0005 | qs-0.6.6.tgz |
| CVE-2020-28469 | glob-parent-2.0.0.tgz |
| CVE-2017-20165 | debug-0.7.4.tgz |
| CVE-2019-14862 | knockout-3.2.0 |
| CVE-2019-5484 | bower-0.9.2.tgz |
| CVE-2023-26117 | angular-1.4.8.js |
| CVE-2018-3721 | lodash-3.10.0.js |
| CVE-2015-9251 | jquery-2.1.3.js |
| CVE-2022-24999 | qs-2.3.3.tgz |
| CVE-2023-28155 | request-2.34.0.tgz |
| WS-2018-0163 | vue-2.1.8.js |
| CVE-2018-16487 | lodash-2.4.2.tgz |
| WS-2019-0017 | clean-css-2.2.23.tgz |
| CVE-2020-28500 | lodash-2.4.2.tgz |
| CVE-2019-14863 | angular-1.3.15.js |
| CVE-2023-26117 | angular-1.3.15.js |
| CVE-2018-20834 | tar-0.1.20.tgz |
| CVE-2023-26118 | angular-1.3.15.js |
| CVE-2022-3517 | minimatch-1.0.0.tgz |
| CVE-2022-25883 | semver-2.3.2.tgz |
| WS-2018-0075 | concat-stream-1.4.11.tgz |
| CVE-2022-38900 | decode-uri-component-0.2.0.tgz |
| CVE-2020-7676 | angular-1.4.3.js |
| WS-2017-3738 | vue-2.1.8.js |
| CVE-2021-37713 | tar-0.1.20.tgz |
| CVE-2019-10768 | angular-1.3.15.js |
| CVE-2023-26136 | tough-cookie-2.5.0.tgz |
| CVE-2020-7598 | minimist-0.0.8.tgz |
| CVE-2019-1010266 | lodash-0.9.2.tgz |
| WS-2019-0063 | js-yaml-3.7.0.tgz |
| WS-2018-0596 | vue-2.1.8.js |
| CVE-2023-0842 | xml2js-0.4.4.tgz |
| CVE-2020-7788 | ini-1.0.5.tgz |
| CVE-2020-11022 | jquery-1.11.2.js |
| CVE-2017-16138 | mime-1.2.11.tgz |
| CVE-2020-7676 | angular-1.4.8.js |
| CVE-2020-8244 | bl-0.9.5.tgz |
| CVE-2020-28500 | lodash-1.0.2.tgz |
| CVE-2016-10540 | minimatch-1.0.0.tgz |
| WS-2018-0096 | base64url-1.0.6.tgz |
| CVE-2017-15010 | tough-cookie-2.2.2.tgz |
| CVE-2023-26136 | tough-cookie-4.0.0.tgz |
| CVE-2020-28500 | lodash-0.9.2.tgz |
| CVE-2021-44906 | minimist-0.0.8.tgz |
| CVE-2023-28155 | request-2.88.2.tgz |
| CVE-2022-24999 | qs-5.2.1.tgz |
| WS-2018-0162 | vue-2.1.8.js |
| CVE-2018-16487 | lodash-3.10.0.js |
| CVE-2019-10744 | lodash.template-3.6.2.tgz |
| CVE-2014-10064 | qs-0.6.6.tgz |
| WS-2019-0032 | js-yaml-2.0.5.tgz |
| CVE-2015-8860 | tar-0.1.20.tgz |
| CVE-2019-10768 | angular-1.4.3.js |
| CVE-2019-14862 | knockout-debug-3.3.0.js |
| WS-2020-0044 | decompress-3.0.0.tgz |
| CVE-2021-23358 | underscore-1.7.0.tgz |
| WS-2019-0032 | js-yaml-3.7.0.tgz |
| CVE-2022-25883 | semver-1.1.4.tgz |
| CVE-2019-11358 | jquery-2.1.3.js |
| CVE-2019-1010266 | lodash-1.0.2.tgz |
| CVE-2017-16026 | request-2.34.0.tgz |
| CVE-2014-7191 | qs-0.6.6.tgz |
| CVE-2023-26118 | angular-1.4.8.js |
| CVE-2016-1000232 | tough-cookie-2.2.2.tgz |
| CVE-2018-3728 | hoek-0.9.1.tgz |
| WS-2018-0096 | base64url-0.0.6.tgz |
| CVE-2017-16026 | request-2.67.0.tgz |
| CVE-2020-12265 | decompress-tar-3.1.0.tgz |
| CVE-2021-44906 | minimist-0.0.10.tgz |
| CVE-2021-43307 | semver-regex-1.0.0.tgz |
| CVE-2015-8855 | semver-1.1.4.tgz |
| CVE-2016-10540 | minimatch-0.2.14.tgz |
| CVE-2021-23337 | lodash-0.9.2.tgz |
| CVE-2020-11023 | jquery-2.1.3.js |
| CVE-2023-26118 | angular-1.4.3.js |
| CVE-2021-32804 | tar-0.1.20.tgz |
| CVE-2023-26156 | chromedriver-2.46.0.tgz |
| CVE-2022-1537 | grunt-0.4.5.tgz |
| CVE-2018-1000620 | cryptiles-2.0.5.tgz |
| WS-2018-0075 | concat-stream-1.5.0.tgz |
| CVE-2019-13173 | fstream-0.1.31.tgz |
| CVE-2021-28092 | is-svg-2.1.0.tgz |
| CVE-2022-25883 | semver-4.3.6.tgz |
| CVE-2020-12265 | decompress-3.0.0.tgz |
| CVE-2019-1010266 | lodash-2.4.2.tgz |
| CVE-2018-16487 | lodash-1.0.2.tgz |
| CVE-2017-1000048 | qs-0.6.6.tgz |
| CVE-2020-7598 | minimist-0.0.10.tgz |
| CVE-2019-10768 | angular-1.4.8.js |
| CVE-2023-28155 | request-2.51.0.tgz |
| CVE-2019-14863 | angular-1.4.8.js |
| CVE-2020-28282 | getobject-0.1.0.tgz |
| CVE-2022-29167 | hawk-3.1.3.tgz |
| CVE-2020-11023 | jquery-1.11.2.js |
| WS-2019-0063 | js-yaml-2.0.5.tgz |
| CVE-2022-0436 | grunt-0.4.5.tgz |
| CVE-2020-8203 | lodash-0.9.2.tgz |
| CVE-2023-28155 | request-2.67.0.tgz |
| CVE-2020-28500 | lodash-3.10.0.js |
| CVE-2015-8855 | semver-2.3.2.tgz |
| CVE-2019-11358 | jquery-1.11.2.js |
| CVE-2021-3795 | semver-regex-1.0.0.tgz |
| CVE-2022-25869 | angular-1.4.8.js |
| CVE-2021-23337 | lodash-3.10.0.js |
| CVE-2023-26116 | angular-1.3.15.js |
| CVE-2019-14863 | angular-1.4.3.js |
| WS-2018-0076 | tunnel-agent-0.4.3.tgz |
| CVE-2020-8203 | lodash-1.0.2.tgz |
| CVE-2015-9251 | jquery-1.11.2.js |
| CVE-2017-16138 | mime-1.2.7.tgz |
| CVE-2021-37712 | tar-0.1.20.tgz |
| CVE-2020-11022 | jquery-2.1.3.js |
| CVE-2016-10540 | minimatch-0.3.0.tgz |
| CVE-2020-7729 | grunt-0.4.5.tgz |
| CVE-2021-32803 | tar-0.1.20.tgz |
| CVE-2020-8203 | lodash-3.10.0.js |
| CVE-2020-8203 | lodash-2.4.2.tgz |
| CVE-2019-10744 | lodash-0.9.2.tgz |
| CVE-2020-7661 | url-regex-3.2.0.tgz |
| CVE-2021-37701 | tar-0.1.20.tgz |
| CVE-2018-1000620 | cryptiles-0.2.2.tgz |
| CVE-2021-23337 | lodash-2.4.2.tgz |
| WS-2021-0638 | mocha-9.2.2.tgz |
| WS-2017-0266 | http-signature-0.10.1.tgz |
| CVE-2020-28469 | glob-parent-3.1.0.tgz |
| CVE-2018-3721 | lodash-1.0.2.tgz |
| WS-2019-0252 | googleapis-1.1.5.tgz |
| CVE-2023-28155 | request-2.11.4.tgz |
| CVE-2023-26136 | tough-cookie-2.2.2.tgz |
| CVE-2018-3721 | lodash-0.9.2.tgz |
| CVE-2022-25869 | angular-1.4.3.js |
| CVE-2023-26116 | angular-1.4.3.js |
| CVE-2017-1000048 | qs-2.3.3.tgz |
| CVE-2018-1002204 | adm-zip-0.4.4.tgz |
| CVE-2018-3728 | hoek-2.16.3.tgz |
| CVE-2018-3721 | lodash-2.4.2.tgz |
| CVE-2019-1010266 | lodash-3.10.0.js |
| CVE-2019-10744 | lodash-2.4.2.tgz |
Base branch total remaining vulnerabilities: 297
Base branch commit: null
Total libraries scanned: 375
Scan token: 782ad1be146544f2b5bef09ee68a4a85