Skip to content
This repository has been archived by the owner on Dec 20, 2023. It is now read-only.

chore(deps): update dependency gulp-vulcanize to v4 (master) #46

Open
wants to merge 1 commit into
base: master
Choose a base branch
from

Update dependency gulp-vulcanize to v4

94e69c0
Select commit
Loading
Failed to load commit list.
Open

chore(deps): update dependency gulp-vulcanize to v4 (master) #46

Update dependency gulp-vulcanize to v4
94e69c0
Select commit
Loading
Failed to load commit list.
Appcues WSS / WhiteSource Security Check failed Dec 13, 2023 in 33m 52s

Security Report

You have successfully remediated 164 vulnerabilities, but introduced 11 new vulnerabilities in this branch.

❌ New vulnerabilities:

CVE Severity CVSS Score Vulnerable Library Suggested Fix Issue
WS-2019-0266

Path to dependency file: /examples/mithril/index.html

Path to vulnerable library: /examples/mithril/node_modules/mithril/mithril.js

Dependency Hierarchy:

-> ❌ mithril-0.2.8.js (Vulnerable Library)

High 8.2 mithril-0.2.8.js Upgrade to version: 2.0.3 None
CVE-2022-25844

Path to dependency file: /examples/typescript-angular/index.html

Path to vulnerable library: /examples/typescript-angular/node_modules/angular/angular.js,/examples/firebase-angular/node_modules/angular/angular.js,/examples/angularjs/node_modules/angular/angular.js

Dependency Hierarchy:

-> ❌ angular-1.8.3.js (Vulnerable Library)

High 7.5 angular-1.8.3.js None
CVE-2022-25869

Path to dependency file: /examples/typescript-angular/index.html

Path to vulnerable library: /examples/typescript-angular/node_modules/angular/angular.js,/examples/firebase-angular/node_modules/angular/angular.js,/examples/angularjs/node_modules/angular/angular.js

Dependency Hierarchy:

-> ❌ angular-1.8.3.js (Vulnerable Library)

Medium 6.1 angular-1.8.3.js None
CVE-2020-23064

Path to dependency file: /examples/typescript-backbone/index.html

Path to vulnerable library: /examples/typescript-backbone/node_modules/jquery/dist/jquery.js,/examples/dijon/node_modules/jquery/dist/jquery.js,/examples/react-backbone/node_modules/jquery/dist/jquery.js,/examples/backbone/node_modules/jquery/dist/jquery.js,/examples/canjs/node_modules/jquery/dist/jquery.js,/examples/knockback/node_modules/jquery/dist/jquery.js

Dependency Hierarchy:

-> ❌ jquery-2.2.4.js (Vulnerable Library)

Medium 6.1 jquery-2.2.4.js Upgrade to version: jquery - 3.5.0 None
CVE-2020-11023

Path to dependency file: /examples/typescript-backbone/index.html

Path to vulnerable library: /examples/typescript-backbone/node_modules/jquery/dist/jquery.js,/examples/dijon/node_modules/jquery/dist/jquery.js,/examples/react-backbone/node_modules/jquery/dist/jquery.js,/examples/backbone/node_modules/jquery/dist/jquery.js,/examples/canjs/node_modules/jquery/dist/jquery.js,/examples/knockback/node_modules/jquery/dist/jquery.js

Dependency Hierarchy:

-> ❌ jquery-2.2.4.js (Vulnerable Library)

Medium 6.1 jquery-2.2.4.js Upgrade to version: jquery - 3.5.0;jquery-rails - 4.4.0 None
CVE-2020-11022

Path to dependency file: /examples/typescript-backbone/index.html

Path to vulnerable library: /examples/typescript-backbone/node_modules/jquery/dist/jquery.js,/examples/dijon/node_modules/jquery/dist/jquery.js,/examples/react-backbone/node_modules/jquery/dist/jquery.js,/examples/backbone/node_modules/jquery/dist/jquery.js,/examples/canjs/node_modules/jquery/dist/jquery.js,/examples/knockback/node_modules/jquery/dist/jquery.js

Dependency Hierarchy:

-> ❌ jquery-2.2.4.js (Vulnerable Library)

Medium 6.1 jquery-2.2.4.js Upgrade to version: jQuery - 3.5.0 None
CVE-2019-11358

Path to dependency file: /examples/typescript-backbone/index.html

Path to vulnerable library: /examples/typescript-backbone/node_modules/jquery/dist/jquery.js,/examples/dijon/node_modules/jquery/dist/jquery.js,/examples/react-backbone/node_modules/jquery/dist/jquery.js,/examples/backbone/node_modules/jquery/dist/jquery.js,/examples/canjs/node_modules/jquery/dist/jquery.js,/examples/knockback/node_modules/jquery/dist/jquery.js

Dependency Hierarchy:

-> ❌ jquery-2.2.4.js (Vulnerable Library)

Medium 6.1 jquery-2.2.4.js Upgrade to version: jquery - 3.4.0 None
CVE-2015-9251

Path to dependency file: /examples/typescript-backbone/index.html

Path to vulnerable library: /examples/typescript-backbone/node_modules/jquery/dist/jquery.js,/examples/dijon/node_modules/jquery/dist/jquery.js,/examples/react-backbone/node_modules/jquery/dist/jquery.js,/examples/backbone/node_modules/jquery/dist/jquery.js,/examples/canjs/node_modules/jquery/dist/jquery.js,/examples/knockback/node_modules/jquery/dist/jquery.js

Dependency Hierarchy:

-> ❌ jquery-2.2.4.js (Vulnerable Library)

Medium 6.1 jquery-2.2.4.js Upgrade to version: jQuery - 3.0.0 None
CVE-2023-26118

Path to dependency file: /examples/typescript-angular/index.html

Path to vulnerable library: /examples/typescript-angular/node_modules/angular/angular.js,/examples/firebase-angular/node_modules/angular/angular.js,/examples/angularjs/node_modules/angular/angular.js

Dependency Hierarchy:

-> ❌ angular-1.8.3.js (Vulnerable Library)

Medium 5.3 angular-1.8.3.js None
CVE-2023-26117

Path to dependency file: /examples/typescript-angular/index.html

Path to vulnerable library: /examples/typescript-angular/node_modules/angular/angular.js,/examples/firebase-angular/node_modules/angular/angular.js,/examples/angularjs/node_modules/angular/angular.js

Dependency Hierarchy:

-> ❌ angular-1.8.3.js (Vulnerable Library)

Medium 5.3 angular-1.8.3.js None
CVE-2023-26116

Path to dependency file: /examples/typescript-angular/index.html

Path to vulnerable library: /examples/typescript-angular/node_modules/angular/angular.js,/examples/firebase-angular/node_modules/angular/angular.js,/examples/angularjs/node_modules/angular/angular.js

Dependency Hierarchy:

-> ❌ angular-1.8.3.js (Vulnerable Library)

Medium 5.3 angular-1.8.3.js None

✔️ Remediated vulnerabilities:

CVE Vulnerable Library
CVE-2016-2515 hawk-1.0.0.tgz
CVE-2020-7676 angular-1.3.15.js
CVE-2017-16026 request-2.51.0.tgz
CVE-2021-44906 minimist-0.2.1.tgz
CVE-2019-10744 lodash-1.0.2.tgz
WS-2018-0076 tunnel-agent-0.3.0.tgz
CVE-2023-26116 angular-1.4.8.js
WS-2019-0266 mithril-0.2.0.js
CVE-2023-26117 angular-1.4.3.js
CVE-2018-16487 lodash-0.9.2.tgz
CVE-2021-29059 is-svg-2.1.0.tgz
CVE-2022-33987 got-5.6.0.tgz
CVE-2021-43138 async-2.6.3.tgz
CVE-2022-25869 angular-1.3.15.js
CVE-2022-3517 minimatch-0.3.0.tgz
CVE-2022-25883 semver-5.7.1.tgz
CVE-2020-8244 bl-1.0.3.tgz
CVE-2021-23382 postcss-2.2.6.tgz
CVE-2021-33623 trim-newlines-1.0.0.tgz
CVE-2017-16026 request-2.11.4.tgz
CVE-2017-16137 debug-0.7.4.tgz
CVE-2016-2515 hawk-1.1.1.tgz
CVE-2021-23337 lodash-1.0.2.tgz
CVE-2017-1000048 qs-5.2.1.tgz
CVE-2019-10744 lodash-3.10.0.js
CVE-2022-3517 minimatch-0.2.14.tgz
WS-2014-0005 qs-0.6.6.tgz
CVE-2020-28469 glob-parent-2.0.0.tgz
CVE-2017-20165 debug-0.7.4.tgz
CVE-2019-14862 knockout-3.2.0
CVE-2019-5484 bower-0.9.2.tgz
CVE-2023-26117 angular-1.4.8.js
CVE-2018-3721 lodash-3.10.0.js
CVE-2015-9251 jquery-2.1.3.js
CVE-2022-24999 qs-2.3.3.tgz
CVE-2023-28155 request-2.34.0.tgz
WS-2018-0163 vue-2.1.8.js
CVE-2018-16487 lodash-2.4.2.tgz
WS-2019-0017 clean-css-2.2.23.tgz
CVE-2020-28500 lodash-2.4.2.tgz
CVE-2019-14863 angular-1.3.15.js
CVE-2023-26117 angular-1.3.15.js
CVE-2018-20834 tar-0.1.20.tgz
CVE-2023-26118 angular-1.3.15.js
CVE-2022-3517 minimatch-1.0.0.tgz
CVE-2022-25883 semver-2.3.2.tgz
WS-2018-0075 concat-stream-1.4.11.tgz
CVE-2022-38900 decode-uri-component-0.2.0.tgz
CVE-2020-7676 angular-1.4.3.js
WS-2017-3738 vue-2.1.8.js
CVE-2021-37713 tar-0.1.20.tgz
CVE-2019-10768 angular-1.3.15.js
CVE-2023-26136 tough-cookie-2.5.0.tgz
CVE-2020-7598 minimist-0.0.8.tgz
CVE-2019-1010266 lodash-0.9.2.tgz
WS-2019-0063 js-yaml-3.7.0.tgz
WS-2018-0596 vue-2.1.8.js
CVE-2023-0842 xml2js-0.4.4.tgz
CVE-2020-7788 ini-1.0.5.tgz
CVE-2020-11022 jquery-1.11.2.js
CVE-2017-16138 mime-1.2.11.tgz
CVE-2020-7676 angular-1.4.8.js
CVE-2020-8244 bl-0.9.5.tgz
CVE-2020-28500 lodash-1.0.2.tgz
CVE-2016-10540 minimatch-1.0.0.tgz
WS-2018-0096 base64url-1.0.6.tgz
CVE-2017-15010 tough-cookie-2.2.2.tgz
CVE-2023-26136 tough-cookie-4.0.0.tgz
CVE-2020-28500 lodash-0.9.2.tgz
CVE-2021-44906 minimist-0.0.8.tgz
CVE-2023-28155 request-2.88.2.tgz
CVE-2022-24999 qs-5.2.1.tgz
WS-2018-0162 vue-2.1.8.js
CVE-2018-16487 lodash-3.10.0.js
CVE-2019-10744 lodash.template-3.6.2.tgz
CVE-2014-10064 qs-0.6.6.tgz
WS-2019-0032 js-yaml-2.0.5.tgz
CVE-2015-8860 tar-0.1.20.tgz
CVE-2019-10768 angular-1.4.3.js
CVE-2019-14862 knockout-debug-3.3.0.js
WS-2020-0044 decompress-3.0.0.tgz
CVE-2021-23358 underscore-1.7.0.tgz
WS-2019-0032 js-yaml-3.7.0.tgz
CVE-2022-25883 semver-1.1.4.tgz
CVE-2019-11358 jquery-2.1.3.js
CVE-2019-1010266 lodash-1.0.2.tgz
CVE-2017-16026 request-2.34.0.tgz
CVE-2014-7191 qs-0.6.6.tgz
CVE-2023-26118 angular-1.4.8.js
CVE-2016-1000232 tough-cookie-2.2.2.tgz
CVE-2018-3728 hoek-0.9.1.tgz
WS-2018-0096 base64url-0.0.6.tgz
CVE-2017-16026 request-2.67.0.tgz
CVE-2020-12265 decompress-tar-3.1.0.tgz
CVE-2021-44906 minimist-0.0.10.tgz
CVE-2021-43307 semver-regex-1.0.0.tgz
CVE-2015-8855 semver-1.1.4.tgz
CVE-2016-10540 minimatch-0.2.14.tgz
CVE-2021-23337 lodash-0.9.2.tgz
CVE-2020-11023 jquery-2.1.3.js
CVE-2023-26118 angular-1.4.3.js
CVE-2021-32804 tar-0.1.20.tgz
CVE-2023-26156 chromedriver-2.46.0.tgz
CVE-2022-1537 grunt-0.4.5.tgz
CVE-2018-1000620 cryptiles-2.0.5.tgz
WS-2018-0075 concat-stream-1.5.0.tgz
CVE-2019-13173 fstream-0.1.31.tgz
CVE-2021-28092 is-svg-2.1.0.tgz
CVE-2022-25883 semver-4.3.6.tgz
CVE-2020-12265 decompress-3.0.0.tgz
CVE-2019-1010266 lodash-2.4.2.tgz
CVE-2018-16487 lodash-1.0.2.tgz
CVE-2017-1000048 qs-0.6.6.tgz
CVE-2020-7598 minimist-0.0.10.tgz
CVE-2019-10768 angular-1.4.8.js
CVE-2023-28155 request-2.51.0.tgz
CVE-2019-14863 angular-1.4.8.js
CVE-2020-28282 getobject-0.1.0.tgz
CVE-2022-29167 hawk-3.1.3.tgz
CVE-2020-11023 jquery-1.11.2.js
WS-2019-0063 js-yaml-2.0.5.tgz
CVE-2022-0436 grunt-0.4.5.tgz
CVE-2020-8203 lodash-0.9.2.tgz
CVE-2023-28155 request-2.67.0.tgz
CVE-2020-28500 lodash-3.10.0.js
CVE-2015-8855 semver-2.3.2.tgz
CVE-2019-11358 jquery-1.11.2.js
CVE-2021-3795 semver-regex-1.0.0.tgz
CVE-2022-25869 angular-1.4.8.js
CVE-2021-23337 lodash-3.10.0.js
CVE-2023-26116 angular-1.3.15.js
CVE-2019-14863 angular-1.4.3.js
WS-2018-0076 tunnel-agent-0.4.3.tgz
CVE-2020-8203 lodash-1.0.2.tgz
CVE-2015-9251 jquery-1.11.2.js
CVE-2017-16138 mime-1.2.7.tgz
CVE-2021-37712 tar-0.1.20.tgz
CVE-2020-11022 jquery-2.1.3.js
CVE-2016-10540 minimatch-0.3.0.tgz
CVE-2020-7729 grunt-0.4.5.tgz
CVE-2021-32803 tar-0.1.20.tgz
CVE-2020-8203 lodash-3.10.0.js
CVE-2020-8203 lodash-2.4.2.tgz
CVE-2019-10744 lodash-0.9.2.tgz
CVE-2020-7661 url-regex-3.2.0.tgz
CVE-2021-37701 tar-0.1.20.tgz
CVE-2018-1000620 cryptiles-0.2.2.tgz
CVE-2021-23337 lodash-2.4.2.tgz
WS-2021-0638 mocha-9.2.2.tgz
WS-2017-0266 http-signature-0.10.1.tgz
CVE-2020-28469 glob-parent-3.1.0.tgz
CVE-2018-3721 lodash-1.0.2.tgz
WS-2019-0252 googleapis-1.1.5.tgz
CVE-2023-28155 request-2.11.4.tgz
CVE-2023-26136 tough-cookie-2.2.2.tgz
CVE-2018-3721 lodash-0.9.2.tgz
CVE-2022-25869 angular-1.4.3.js
CVE-2023-26116 angular-1.4.3.js
CVE-2017-1000048 qs-2.3.3.tgz
CVE-2018-1002204 adm-zip-0.4.4.tgz
CVE-2018-3728 hoek-2.16.3.tgz
CVE-2018-3721 lodash-2.4.2.tgz
CVE-2019-1010266 lodash-3.10.0.js
CVE-2019-10744 lodash-2.4.2.tgz

Base branch total remaining vulnerabilities: 297
Base branch commit: null


Total libraries scanned: 420

Scan token: 233782eb294344b8afe87334dbbf3e01