Project Files
results.txt
Report Summary
āāāāāāāāāāāāāāāāāāāāā¬āāāāāāā¬āāāāāāāāāāāāāāāāāā¬āāāāāāāāāā
ā Target ā Type ā Vulnerabilities ā Secrets ā
āāāāāāāāāāāāāāāāāāāāā¼āāāāāāā¼āāāāāāāāāāāāāāāāāā¼āāāāāāāāāā¤
ā package-lock.json ā npm ā 2 ā - ā
āāāāāāāāāāāāāāāāāāāāā“āāāāāāā“āāāāāāāāāāāāāāāāāā“āāāāāāāāāā
Legend:
- '-': Not scanned
- '0': Clean (no security findings detected)
package-lock.json (npm)
=======================
Total: 2 (UNKNOWN: 0, LOW: 0, MEDIUM: 1, HIGH: 1, CRITICAL: 0)
āāāāāāāāāāā¬āāāāāāāāāāāāāāāāā¬āāāāāāāāāāā¬āāāāāāāāā¬āāāāāāāāāāāāāāāāāāāā¬āāāāāāāāāāāāāāāāāāāāāāāāāāāāāāā¬āāāāāāāāāāāāāāāāāāāāāāāāāāāāāāāāāāāāāāāāāāāāāāāāāāāāāāāāāāāāā
ā Library ā Vulnerability ā Severity ā Status ā Installed Version ā Fixed Version ā Title ā
āāāāāāāāāāā¼āāāāāāāāāāāāāāāāā¼āāāāāāāāāāā¼āāāāāāāāā¼āāāāāāāāāāāāāāāāāāāā¼āāāāāāāāāāāāāāāāāāāāāāāāāāāāāāā¼āāāāāāāāāāāāāāāāāāāāāāāāāāāāāāāāāāāāāāāāāāāāāāāāāāāāāāāāāāāāā¤
ā ws ā CVE-2026-48779 ā HIGH ā fixed ā 8.18.3 ā 5.2.5, 6.2.4, 7.5.11, 8.21.0 ā ws: ws: Denial of Service via memory exhaustion from small ā
ā ā ā ā ā ā ā WebSocket fragments... ā
ā ā ā ā ā ā ā https://avd.aquasec.com/nvd/cve-2026-48779 ā
ā āāāāāāāāāāāāāāāāāā¼āāāāāāāāāā⤠ā āāāāāāāāāāāāāāāāāāāāāāāāāāāāāāāā¼āāāāāāāāāāāāāāāāāāāāāāāāāāāāāāāāāāāāāāāāāāāāāāāāāāāāāāāāāāāāā¤
ā ā CVE-2026-45736 ā MEDIUM ā ā ā 8.20.1 ā ws: ws: Uninitialized memory disclosure via ā
ā ā ā ā ā ā ā `websocket.close()` with `TypedArray` ā
ā ā ā ā ā ā ā https://avd.aquasec.com/nvd/cve-2026-45736 ā
āāāāāāāāāāā“āāāāāāāāāāāāāāāāā“āāāāāāāāāāā“āāāāāāāāā“āāāāāāāāāāāāāāāāāāāā“āāāāāāāāāāāāāāāāāāāāāāāāāāāāāāā“āāāāāāāāāāāāāāāāāāāāāāāāāāāāāāāāāāāāāāāāāāāāāāāāāāāāāāāāāāāāā