Security Alert
github-actions opened this issue · 0 comments
github-actions commented
app/docs/yarn.lock
| Title | Severity | CVE | Package Name | Installed Version | Fixed Version | References |
|---|---|---|---|---|---|---|
| nodejs-node-forge: prototype pollution via the util.setPath function | HIGH | CVE-2020-7720 | node-forge | 0.9.0 | 0.10.0 | GHSA-92xj-mqp7-vmcj https://github.com/digitalbazaar/forge/blob/master/CHANGELOG.md https://nvd.nist.gov/vuln/detail/CVE-2020-7720 https://snyk.io/vuln/SNYK-JAVA-ORGWEBJARSNPM-609293 https://snyk.io/vuln/SNYK-JS-NODEFORGE-598677 |