Skip to content

[stable33] Fix npm audit#935

Merged
kyteinsky merged 1 commit into
stable33from
automated/noid/stable33-fix-npm-audit
Jul 10, 2026
Merged

[stable33] Fix npm audit#935
kyteinsky merged 1 commit into
stable33from
automated/noid/stable33-fix-npm-audit

Conversation

@nextcloud-command

Copy link
Copy Markdown
Contributor

Audit report

This audit fix resolves 2 of the total 41 vulnerabilities found in your project.

Updated dependencies

Fixed vulnerabilities

dompurify #

  • DOMPurify contains a Cross-site Scripting vulnerability
  • Severity: moderate (CVSS 6.1)
  • Reference: GHSA-v2wj-7wpq-c8vv
  • Affected versions: <=3.4.10
  • Package usage:
    • node_modules/dompurify

terser-webpack-plugin #

  • Caused by vulnerable dependency:
  • Affected versions: 4.2.1 - 5.3.16
  • Package usage:
    • node_modules/terser-webpack-plugin

Signed-off-by: GitHub <noreply@github.com>
@nextcloud-command nextcloud-command added 3. to review dependencies Pull requests that update a dependency file labels Jul 10, 2026
@kyteinsky kyteinsky merged commit c4c27cd into stable33 Jul 10, 2026
35 checks passed
@kyteinsky kyteinsky deleted the automated/noid/stable33-fix-npm-audit branch July 10, 2026 15:59
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Labels

3. to review dependencies Pull requests that update a dependency file

Projects

None yet

Development

Successfully merging this pull request may close these issues.

2 participants