Skip to content

Update dependency immutable to ~3.8.3#32

Open
dev-mend-for-github-com[bot] wants to merge 1 commit into
masterfrom
whitesource-remediate/immutable-3.x
Open

Update dependency immutable to ~3.8.3#32
dev-mend-for-github-com[bot] wants to merge 1 commit into
masterfrom
whitesource-remediate/immutable-3.x

Update dependency immutable to ~3.8.3

e3d26c9
Select commit
Loading
Failed to load commit list.
Dev - Mend for GitHub.com / Mend Security Check failed May 27, 2026 in 6m 30s

Security Report

You have successfully remediated 9 vulnerabilities, but introduced 5 new vulnerabilities in this branch.

❌ New vulnerabilities:

Vulnerability Severity CVSS Score Vulnerable Library Direct Library Suggested Fix Issue
CVE-2026-26996

Path to dependency file: /package.json

Path to vulnerable library: /node_modules/commoner/node_modules/minimatch/package.json

Dependency Hierarchy:

-> react-0.13.3.tgz (Root Library)

   -> envify-3.4.1.tgz

     -> jstransform-11.0.3.tgz

       -> commoner-0.10.8.tgz

         -> glob-5.0.15.tgz

           -> ❌ minimatch-3.1.5.tgz (Vulnerable Library)

High 7.5 Transitive minimatch-3.1.5.tgz react-0.13.3.tgz Transitive 10.2.1 #⁠11
CVE-2020-11023

Path to dependency file: /test/index.html

Path to vulnerable library: /test/index.html

Dependency Hierarchy:

-> ❌ jquery-11.0-1.7.22-1.min.js (Vulnerable Library)

Medium 6.9 Direct jquery-11.0-1.7.22-1.min.js jquery-11.0-1.7.22-1.min.js org.webjars.npm:jquery:3.5.0,jquery - 3.5.0,jquery-rails - 4.4.0,jQuery - 3.5.0 None
CVE-2020-11022

Path to dependency file: /test/index.html

Path to vulnerable library: /test/index.html

Dependency Hierarchy:

-> ❌ jquery-11.0-1.7.22-1.min.js (Vulnerable Library)

Medium 6.9 Direct jquery-11.0-1.7.22-1.min.js jquery-11.0-1.7.22-1.min.js org.webjars.npm:jquery:3.5.0,jquery - 3.5.0,jquery - 3.5.0,jquery-rails - 4.4.0 None
CVE-2019-11358

Path to dependency file: /test/index.html

Path to vulnerable library: /test/index.html

Dependency Hierarchy:

-> ❌ jquery-11.0-1.7.22-1.min.js (Vulnerable Library)

Medium 6.1 Direct jquery-11.0-1.7.22-1.min.js jquery-11.0-1.7.22-1.min.js org.webjars.npm:jquery:3.4.0,django - 2.2.2,jquery - 3.4.0,jquery-rails - 4.3.4,django - 2.1.9,jQuery - 3.4.0,jQuery - 3.4.0 None
CVE-2015-9251

Path to dependency file: /test/index.html

Path to vulnerable library: /test/index.html

Dependency Hierarchy:

-> ❌ jquery-11.0-1.7.22-1.min.js (Vulnerable Library)

Medium 6.1 Direct jquery-11.0-1.7.22-1.min.js jquery-11.0-1.7.22-1.min.js jquery - 3.0.0,org.webjars.npm:jquery:1.12.2,jQuery - 3.0.0,jquery-rails - 4.2.0,jquery - 1.12.2,org.webjars.npm:jquery:3.0.0,jQuery - 1.12.2,jQuery - 3.0.0,org.webjars.npm:jquery:1.12.2,org.webjars.npm:jquery:3.0.0,jquery - 3.0.0,jquery - 1.12.2,jQuery - 1.12.2,jquery-rails - 4.2.0 None

✔️ Remediated vulnerabilities:

Vulnerability Vulnerable Library
CVE-2026-29063 immutable-3.7.6.tgz
CVE-2015-9251 jquery-1.9.1.js
CVE-2025-5889 brace-expansion-1.1.11.tgz
CVE-2020-11022 jquery-1.9.1.js
CVE-2026-26996 minimatch-3.1.2.tgz
CVE-2019-11358 jquery-1.9.1.js
CVE-2017-16129 superagent-1.2.0.tgz
CVE-2020-11023 jquery-1.9.1.js
CVE-2026-33750 brace-expansion-1.1.11.tgz

Base branch total remaining vulnerabilities: 45
Base branch commit: null


Total libraries scanned: 282

Scan token: 3bad442d946c4901ae747f3a6e58d93c

View more details on Dev - Mend for GitHub.com