Skip to content

critical vulnerabilities in object-extend dependancy  #104

Open
Open
critical vulnerabilities in object-extend dependancy #104
@cgx-system

Description

@cgx-system
cgx-system
opened on Jun 14, 2023
# npm audit report

object-extend  *
Severity: critical
Prototype Pollution in object-extend - https://github.com/advisories/GHSA-m639-9whg-fw97
No fix available
node_modules/object-extend
  @terwanerik/scrolltrigger  *
  Depends on vulnerable versions of object-extend
  node_modules/@terwanerik/scrolltrigger

2 critical severity vulnerabilities

Some issues need review, and may require choosing
a different dependency.

Metadata

Metadata

Assignees

No one assigned

    Labels

    No labels
    No labels

    Projects

    No projects

    Milestone

    No milestone

    Relationships

    None yet

    Development

    No branches or pull requests

    Issue actions