Skip to content

[stable32] Fix npm audit #3164

New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom
Open
nextcloud-command wants to merge 1 commit into
base: stable32
Choose a base branch
from
Open

[stable32] Fix npm audit #3164

nextcloud-command wants to merge 1 commit into from

Conversation

@nextcloud-command
Copy link
Contributor

@nextcloud-command nextcloud-command commented Sep 4, 2025
edited
Loading

Audit report

This audit fix resolves 2 of the total 30 vulnerabilities found in your project.

Updated dependencies

Fixed vulnerabilities

@nextcloud/eslint-config #

  • Caused by vulnerable dependency:
  • Affected versions: 9.0.0-rc.0 - 9.0.0-rc.2
  • Package usage:
    • node_modules/@nextcloud/eslint-config

axios #

  • Axios is vulnerable to DoS attack through lack of data size check
  • Severity: high (CVSS 7.5)
  • Reference: GHSA-4hjh-wcwx-xvwj
  • Affected versions: 1.0.0 - 1.11.0
  • Package usage:
    • node_modules/axios

@nextcloud-command nextcloud-command added 3. to review Waiting for reviews dependencies Pull requests that update a dependency file labels Sep 4, 2025
@codecov
Copy link

codecov bot commented Sep 4, 2025
edited
Loading

Codecov Report

✅ All modified and coverable lines are covered by tests.

📢 Thoughts on this report? Let us know!

@nextcloud-command nextcloud-command force-pushed the automated/noid/stable32-fix-npm-audit branch from 26e891d to 75a7644 Compare September 7, 2025 03:10
@nextcloud-command nextcloud-command force-pushed the automated/noid/stable32-fix-npm-audit branch from 75a7644 to 7d41c6e Compare September 14, 2025 03:15
@nextcloud-command nextcloud-command force-pushed the automated/noid/stable32-fix-npm-audit branch 2 times, most recently from f914010 to 34521db Compare September 28, 2025 03:21
@nextcloud-command nextcloud-command force-pushed the automated/noid/stable32-fix-npm-audit branch 2 times, most recently from 57b8e1e to e84a89f Compare October 12, 2025 03:22
@nextcloud-command nextcloud-command force-pushed the automated/noid/stable32-fix-npm-audit branch 2 times, most recently from 755cc03 to 84822b8 Compare October 26, 2025 03:18
@nextcloud-command nextcloud-command force-pushed the automated/noid/stable32-fix-npm-audit branch 2 times, most recently from 31b04ff to 850ffd3 Compare November 9, 2025 03:24
@nextcloud-command nextcloud-command force-pushed the automated/noid/stable32-fix-npm-audit branch 2 times, most recently from 75597cf to 75babf7 Compare November 23, 2025 03:35
@nextcloud-command nextcloud-command force-pushed the automated/noid/stable32-fix-npm-audit branch from 75babf7 to c4f88b1 Compare November 30, 2025 03:39
@nextcloud-command nextcloud-command force-pushed the automated/noid/stable32-fix-npm-audit branch 2 times, most recently from 248f468 to 98cea5b Compare December 14, 2025 03:33
@nextcloud-command nextcloud-command force-pushed the automated/noid/stable32-fix-npm-audit branch from 98cea5b to 00e18b8 Compare December 21, 2025 03:32
@nextcloud-command
fix(deps): Fix npm audit
19bc889 
Signed-off-by: GitHub <noreply@github.com>
@nextcloud-command nextcloud-command force-pushed the automated/noid/stable32-fix-npm-audit branch from 00e18b8 to 19bc889 Compare December 28, 2025 03:34
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Reviewers

No reviews

Assignees

No one assigned

Labels

3. to review Waiting for reviews dependencies Pull requests that update a dependency file

Projects

None yet

Milestone

No milestone

Development

Successfully merging this pull request may close these issues.

2 participants

@nextcloud-command