Skip to content

Update dependency async to v2.6.4 #23

New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Open
mdp-local wants to merge 1 commit into
base: main
Choose a base branch
from

Update dependency async to v2.6.4

39a5958
Select commit
Loading
Failed to load commit list.
Open

Update dependency async to v2.6.4 #23

Update dependency async to v2.6.4
39a5958
Select commit
Loading
Failed to load commit list.
Dev - Mend for GitHub.com / Mend Security Check failed Jan 22, 2026 in 49s

Security Report

1 new vulnerabilities were introduced in this branch.

❌ New vulnerabilities:

Vulnerability Severity CVSS Score Vulnerable Library Direct Library Suggested Fix Issue
CVE-398484-724968

Path to dependency file: /package.json

Path to vulnerable library: /package.json

Dependency Hierarchy:

-> core-7.23.2.tgz (Root Library)

   -> traverse-7.28.6.tgz

     -> debug-4.4.3.tgz

       -> ❌ ms-2.1.3.tgz (Vulnerable Library)

Critical 9.8 Transitive ms-2.1.3.tgz core-7.23.2.tgz None

Base branch total remaining vulnerabilities: 59
Base branch commit: 696755a3f971b60ea4c27daf8702c5335219b43a


Total libraries scanned: 420

Scan token: f02190aaadc34aadb3fa55ccb231aa87

View more details on Dev - Mend for GitHub.com