Skip to content

Update dependency serve-favicon to v2.5.1 #36

New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Open
mdp-local wants to merge 1 commit into
base: main
Choose a base branch
from

Update dependency serve-favicon to v2.5.1

3bcde84
Select commit
Loading
Failed to load commit list.
Open

Update dependency serve-favicon to v2.5.1 #36

Update dependency serve-favicon to v2.5.1
3bcde84
Select commit
Loading
Failed to load commit list.
Dev - Mend for GitHub.com / Mend Security Check failed Jan 27, 2026 in 1m 5s

Security Report

2 new vulnerabilities were introduced in this branch.

❌ New vulnerabilities:

Vulnerability Severity CVSS Score Vulnerable Library Direct Library Suggested Fix Issue
CVE-398484-724968

Path to dependency file: /package.json

Path to vulnerable library: /package.json

Dependency Hierarchy:

-> serve-favicon-2.5.1.tgz (Root Library)

   -> ❌ ms-2.1.3.tgz (Vulnerable Library)

Critical 9.8 Transitive ms-2.1.3.tgz serve-favicon-2.5.1.tgz None
CVE-398484-724968

Path to dependency file: /package.json

Path to vulnerable library: /package.json

Dependency Hierarchy:

-> core-7.23.2.tgz (Root Library)

   -> traverse-7.28.6.tgz

     -> debug-4.4.3.tgz

       -> ❌ ms-2.1.3.tgz (Vulnerable Library)

Critical 9.8 Transitive ms-2.1.3.tgz core-7.23.2.tgz None

Base branch total remaining vulnerabilities: 59
Base branch commit: 696755a3f971b60ea4c27daf8702c5335219b43a


Total libraries scanned: 420

Scan token: c4163541e7e344e6b43dca0525f2ca96

View more details on Dev - Mend for GitHub.com