@kindspells/astro-shield@1.3.1 vulnerabilities
Astro integration to enhance your website's security with SubResource Integrity hashes, Content-Security-Policy headers, and other techniques.
-
latest version
1.3.6
-
latest non vulnerable version
-
first published
3 months ago
-
latest version published
18 days ago
-
licenses detected
- >=0
Direct Vulnerabilities
Known vulnerabilities in the @kindspells/astro-shield package. This does not include vulnerabilities belonging to this package’s dependencies.
Automatically find and fix vulnerabilities affecting your projects. Snyk scans for vulnerabilities and provides fixes for free.Vulnerability | Vulnerable Version |
---|---|
@kindspells/astro-shield is an Astro integration to enhance your website's security with SubResource Integrity hashes, Content-Security-Policy headers, and other techniques. Affected versions of this package are vulnerable to Insufficient Verification of Data Authenticity due to the setting of a correct Note: To exploit this issue, an attacker must first inject code into the rendered pages by exploiting other not-related potential vulnerabilities. How to fix Insufficient Verification of Data Authenticity? Upgrade |
>=1.2.0 <1.3.2
|