bahmutov/next-update

Tests if module's dependencies can be updated to the newer version without breaking the tests.
Vulnerabilities 3 via 7 paths
Dependencies 280
Source GitHub
Commit 230d136b

Snyk continuously finds and fixes vulnerabilities in your dependencies.

Filter by issue type
  • 1
  • 2
Filter by issue policy
  • 0
  • 0
medium severity

Uninitialized Memory Exposure

  • Vulnerable module: tunnel-agent
  • Introduced through: request@2.74.0

Detailed paths

  • Introduced through: next-update@bahmutov/next-update#230d136b5c68dadb1fd5459619df8f7678d28429 request@2.74.0 tunnel-agent@0.4.3
low severity

Regular Expression Denial of Service (ReDoS)

  • Vulnerable module: debug
  • Introduced through: debug@2.2.0, npm-utils@1.7.1 and others

Detailed paths

  • Introduced through: next-update@bahmutov/next-update#230d136b5c68dadb1fd5459619df8f7678d28429 debug@2.2.0
  • Introduced through: next-update@bahmutov/next-update#230d136b5c68dadb1fd5459619df8f7678d28429 npm-utils@1.7.1 debug@2.2.0
  • Introduced through: next-update@bahmutov/next-update#230d136b5c68dadb1fd5459619df8f7678d28429 changed-log@0.11.0 debug@2.2.0
low severity

Regular Expression Denial of Service (ReDoS)

  • Vulnerable module: ms
  • Introduced through: debug@2.2.0, npm-utils@1.7.1 and others

Detailed paths

  • Introduced through: next-update@bahmutov/next-update#230d136b5c68dadb1fd5459619df8f7678d28429 debug@2.2.0 ms@0.7.1
  • Introduced through: next-update@bahmutov/next-update#230d136b5c68dadb1fd5459619df8f7678d28429 npm-utils@1.7.1 debug@2.2.0 ms@0.7.1
  • Introduced through: next-update@bahmutov/next-update#230d136b5c68dadb1fd5459619df8f7678d28429 changed-log@0.11.0 debug@2.2.0 ms@0.7.1