npm vulnerabilities
Opened this issue · 0 comments
y1n commented
Hello! Could you please update packages to eliminate following vulnerabilities? :)
Low Regular Expression Denial of Service
Package debug
Patched in >= 2.6.9 < 3.0.0 || >= 3.1.0
Dependency of bitcoin-receive-payments
Path bitcoin-receive-payments > bitcoin-live-transactions >
socket.io-client > debug
More info https://nodesecurity.io/advisories/534
Low Regular Expression Denial of Service
Package debug
Patched in >= 2.6.9 < 3.0.0 || >= 3.1.0
Dependency of bitcoin-receive-payments
Path bitcoin-receive-payments > bitcoin-live-transactions >
socket.io-client > engine.io-client > debug
More info https://nodesecurity.io/advisories/534
Low Regular Expression Denial of Service
Package debug
Patched in >= 2.6.9 < 3.0.0 || >= 3.1.0
Dependency of bitcoin-receive-payments
Path bitcoin-receive-payments > socket.io > debug
More info https://nodesecurity.io/advisories/534
Low Regular Expression Denial of Service
Package debug
Patched in >= 2.6.9 < 3.0.0 || >= 3.1.0
Dependency of bitcoin-receive-payments
Path bitcoin-receive-payments > socket.io > engine.io > debug
More info https://nodesecurity.io/advisories/534
Low Regular Expression Denial of Service
Package debug
Patched in >= 2.6.9 < 3.0.0 || >= 3.1.0
Dependency of bitcoin-receive-payments
Path bitcoin-receive-payments > socket.io > socket.io-adapter >
debug
More info https://nodesecurity.io/advisories/534
Low Regular Expression Denial of Service
Package debug
Patched in >= 2.6.9 < 3.0.0 || >= 3.1.0
Dependency of bitcoin-receive-payments
Path bitcoin-receive-payments > socket.io > socket.io-client >
debug
More info https://nodesecurity.io/advisories/534
Low Regular Expression Denial of Service
Package debug
Patched in >= 2.6.9 < 3.0.0 || >= 3.1.0
Dependency of bitcoin-receive-payments
Path bitcoin-receive-payments > socket.io > socket.io-client >
engine.io-client > debug
More info https://nodesecurity.io/advisories/534
Low Regular Expression Denial of Service
Package debug
Patched in >= 2.6.9 < 3.0.0 || >= 3.1.0
Dependency of bitcoin-receive-payments
Path bitcoin-receive-payments > socket.io-client > debug
More info https://nodesecurity.io/advisories/534
Low Regular Expression Denial of Service
Package debug
Patched in >= 2.6.9 < 3.0.0 || >= 3.1.0
Dependency of bitcoin-receive-payments
Path bitcoin-receive-payments > socket.io-client >
engine.io-client > debug
More info https://nodesecurity.io/advisories/534
Low Regular Expression Denial of Service
Package debug
Patched in >= 2.6.9 < 3.0.0 || >= 3.1.0
Dependency of bitcoin-receive-payments
Path bitcoin-receive-payments > bitcoin-live-transactions >
socket.io-client > socket.io-parser > debug
More info https://nodesecurity.io/advisories/534
Low Regular Expression Denial of Service
Package debug
Patched in >= 2.6.9 < 3.0.0 || >= 3.1.0
Dependency of bitcoin-receive-payments
Path bitcoin-receive-payments > socket.io > socket.io-adapter >
socket.io-parser > debug
More info https://nodesecurity.io/advisories/534
Low Regular Expression Denial of Service
Package debug
Patched in >= 2.6.9 < 3.0.0 || >= 3.1.0
Dependency of bitcoin-receive-payments
Path bitcoin-receive-payments > socket.io > socket.io-client >
socket.io-parser > debug
More info https://nodesecurity.io/advisories/534
Low Regular Expression Denial of Service
Package debug
Patched in >= 2.6.9 < 3.0.0 || >= 3.1.0
Dependency of bitcoin-receive-payments
Path bitcoin-receive-payments > socket.io > socket.io-parser >
debug
More info https://nodesecurity.io/advisories/534
Low Regular Expression Denial of Service
Package debug
Patched in >= 2.6.9 < 3.0.0 || >= 3.1.0
Dependency of bitcoin-receive-payments
Path bitcoin-receive-payments > socket.io-client >
socket.io-parser > debug
More info https://nodesecurity.io/advisories/534
High Regular Expression Denial of Service
Package parsejson
Patched in No patch available
Dependency of bitcoin-receive-payments
Path bitcoin-receive-payments > bitcoin-live-transactions >
socket.io-client > engine.io-client > parsejson
More info https://nodesecurity.io/advisories/528
High Regular Expression Denial of Service
Package parsejson
Patched in No patch available
Dependency of bitcoin-receive-payments
Path bitcoin-receive-payments > socket.io > socket.io-client >
engine.io-client > parsejson
More info https://nodesecurity.io/advisories/528
High Regular Expression Denial of Service
Package parsejson
Patched in No patch available
Dependency of bitcoin-receive-payments
Path bitcoin-receive-payments > socket.io-client >
engine.io-client > parsejson
More info https://nodesecurity.io/advisories/528
High Prototype Pollution
Package lodash
Patched in >=4.17.11
Dependency of bitcoin-receive-payments
Path bitcoin-receive-payments > bitcore-lib > lodash
More info https://nodesecurity.io/advisories/782
Low Prototype Pollution
Package lodash
Patched in >=4.17.5
Dependency of bitcoin-receive-payments
Path bitcoin-receive-payments > bitcore-lib > lodash
More info https://nodesecurity.io/advisories/577