Skip to content

Bump path-to-regexp and express #615

New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Open
dependabot wants to merge 1 commit into
base: main
Choose a base branch
from

Bump path-to-regexp and express

756af9e
Select commit
Loading
Failed to load commit list.
Open

Bump path-to-regexp and express #615

Bump path-to-regexp and express
756af9e
Select commit
Loading
Failed to load commit list.
codefactor.io / CodeFactor failed May 8, 2026 in 2s

8 issues found.

Annotations

Check warning on line 0 in package-lock.json

See this annotation in the file changed.

@codefactor-io codefactor-io / CodeFactor

package-lock.json#L0 

Use of vulnerable semver (CVE-2022-25883) [update to 7.5.2, 6.3.1, 5.7.2] (trivy-CVE-2022-25883-semver)

Check warning on line 0 in package-lock.json

See this annotation in the file changed.

@codefactor-io codefactor-io / CodeFactor

package-lock.json#L0 

Use of vulnerable electron (CVE-2023-5217) [update to 22.3.25, 24.8.5, 25.8.4, 26.2.4, 27.0.0-beta.8] (trivy-CVE-2023-5217-electron)

Check warning on line 0 in package-lock.json

See this annotation in the file changed.

@codefactor-io codefactor-io / CodeFactor

package-lock.json#L0 

Use of vulnerable semver (CVE-2022-25883) [update to 7.5.2, 6.3.1, 5.7.2] (trivy-CVE-2022-25883-semver)

Check warning on line 0 in package-lock.json

See this annotation in the file changed.

@codefactor-io codefactor-io / CodeFactor

package-lock.json#L0 

Use of vulnerable axios (CVE-2025-58754) [update to 1.12.0, 0.30.2] (trivy-CVE-2025-58754-axios)

Check warning on line 0 in package-lock.json

See this annotation in the file changed.

@codefactor-io codefactor-io / CodeFactor

package-lock.json#L0 

Use of vulnerable ws (CVE-2024-37890) [update to 5.2.4, 6.2.3, 7.5.10, 8.17.1] (trivy-CVE-2024-37890-ws)

Check warning on line 0 in package-lock.json

See this annotation in the file changed.

@codefactor-io codefactor-io / CodeFactor

package-lock.json#L0 

Use of vulnerable axios (CVE-2025-27152) [update to 1.8.2, 0.30.0] (trivy-CVE-2025-27152-axios)

Check warning on line 0 in package-lock.json

See this annotation in the file changed.

@codefactor-io codefactor-io / CodeFactor

package-lock.json#L0 

Use of vulnerable http-cache-semantics (CVE-2022-25881) [update to 4.1.1] (trivy-CVE-2022-25881-http-cache-semantics)

Check warning on line 0 in package-lock.json

See this annotation in the file changed.

@codefactor-io codefactor-io / CodeFactor

package-lock.json#L0 

Use of vulnerable electron-updater (CVE-2024-39698) [update to 6.3.0-alpha.6] (trivy-CVE-2024-39698-electron-updater)
View more details on codefactor.io