chore(deps): update dependency helmet to v3.21.0 #4
Security Report
❌ New vulnerabilities:
| Vulnerability | Severity |  CVSS Score |
Vulnerable Library | Direct Library | Suggested Fix | Issue |
|---|---|---|---|---|---|---|
CVE-941441-362681Path to dependency file: /package.json Path to vulnerable library: /package.json Dependency Hierarchy: -> react-scripts-1.0.10.tgz (Root Library) -> fsevents-1.1.2.tgz -> node-pre-gyp-0.6.36.tgz -> tar-pack-3.4.0.tgz -> ❌ once-1.4.0.tgz (Vulnerable Library) |
 Critical |
9.8 | Transitive once-1.4.0.tgz |
react-scripts-1.0.10.tgz | #10 | |
CVE-214679-86261Path to dependency file: /package.json Path to vulnerable library: /package.json Dependency Hierarchy: -> react-scripts-1.0.10.tgz (Root Library) -> babel-core-6.25.0.tgz -> babel-register-6.24.1.tgz -> home-or-tmp-2.0.0.tgz -> ❌ os-tmpdir-1.0.2.tgz (Vulnerable Library) |
Critical |
9.8 | Transitive os-tmpdir-1.0.2.tgz |
react-scripts-1.0.10.tgz | #10 |
✔️ Remediated vulnerabilities:
| Vulnerability | Vulnerable Library |
|---|---|
| WS-2018-0347 | eslint-3.19.0.tgz |
| CVE-2017-16119 | fresh-0.5.0.tgz |
| WS-2019-0289 | helmet-csp-2.5.1.tgz |
| CVE-2017-16028 | randomatic-1.1.7.tgz |
Base branch total remaining vulnerabilities: 233
Base branch commit: null
Total libraries scanned: 1034
Scan token: f48bcec6bbe54c598418849986c7bcec