fix(app): update all non-major dependencies (#1383)
Mend Bolt for GitHub / Mend Security Check
failed
Aug 14, 2024 in 3m 18s
Security Report
| CVE | Severity |  CVSS Score |
Vulnerable Library | Suggested Fix | Issue |
|---|---|---|---|---|---|
CVE-2024-39338Path to dependency file: /package.json Path to vulnerable library: /package.json Dependency Hierarchy: -> @weareinreach/crowdin-0.100.0.tgz (Root Library) -> crowdin-api-client-1.35.0.tgz -> ❌ axios-1.7.2.tgz (Vulnerable Library) |
 High |
7.5 | axios-1.7.2.tgz | Upgrade to version: axios - 1.7.4 | #1381 |
CVE-2024-4067Path to dependency file: /package.json Path to vulnerable library: /package.json Dependency Hierarchy: -> lint-staged-15.2.9.tgz (Root Library) -> ❌ micromatch-4.0.7.tgz (Vulnerable Library) |
 Medium |
5.3 | micromatch-4.0.7.tgz | #1380 |
Total libraries scanned: 881
Scan token: 4600eae893144f8fa78e7e9775b3f733
Loading