Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

chore: update dev dependencies #5513

Closed
wants to merge 4 commits into from

chore: downgrade @carbon/react to 1.55.0

40b1f12
Select commit
Loading
Failed to load commit list.
Closed

chore: update dev dependencies #5513

chore: downgrade @carbon/react to 1.55.0
40b1f12
Select commit
Loading
Failed to load commit list.
IBM Mend app / Mend Security Check failed Jun 18, 2024 in 19m 38s

Security Report

1 new vulnerabilities were introduced in this branch.

❌ New vulnerabilities:

CVE Severity CVSS Score Vulnerable Library Suggested Fix Issue
CVE-2024-37890

Path to dependency file: /package.json

Path to vulnerable library: /package.json

Dependency Hierarchy:

-> jest-config-ibm-cloud-cognitive-1.2.0.tgz (Root Library)

   -> accessibility-checker-3.1.72.tgz

     -> puppeteer-13.7.0.tgz

       -> ❌ ws-8.5.0.tgz (Vulnerable Library)

High 7.5 ws-8.5.0.tgz Upgrade to version: ws - 5.2.4,6.2.3,7.5.10,8.17.1 #5455

Base branch total remaining vulnerabilities: 0
Base branch commit: 2e7a930f99fd6dcadd47a328793ce6a259dc144e


Total libraries scanned: 685

Scan token: 2893aa5e69ca4cf18f730050bea6a0ad

View more details on IBM Mend app