Update dependency body-parser to v1.20.5 - autoclosed#351
Update dependency body-parser to v1.20.5 - autoclosed#351mend-for-github-com[bot] wants to merge 1 commit into
Security Report
❌ New vulnerabilities:
| Vulnerability | Severity |  CVSS Score |
Vulnerable Library | Direct Library | Suggested Fix | Issue |
|---|---|---|---|---|---|---|
CVE-2026-41907Path to dependency file: /tutorials/vonage_video_react_app-feature-config/project/package.json Path to vulnerable library: /tutorials/vonage_video_react_app-feature-config/project/package.json Dependency Hierarchy: -> vivid-5.15.1.tgz (Root Library) -> ❌ uuid-11.1.0.tgz (Vulnerable Library) |
 Critical |
9.8 | Transitive uuid-11.1.0.tgz |
vivid-5.15.1.tgz | Transitive https://github.com/uuidjs/uuid.git - v11.1.1,https://github.com/uuidjs/uuid.git - v12.0.1,https://github.com/uuidjs/uuid.git - v13.0.1 |
None |
CVE-2026-41907Path to dependency file: /tutorials/vonage_video_react_app-feature-config/project/package.json Path to vulnerable library: /tutorials/vonage_video_react_app-feature-config/project/package.json Dependency Hierarchy: -> vcr-sdk-1.3.0.tgz (Root Library) -> ❌ uuid-8.3.2.tgz (Vulnerable Library) |
Critical |
9.8 | Transitive uuid-8.3.2.tgz |
vcr-sdk-1.3.0.tgz | Transitive https://github.com/uuidjs/uuid.git - v11.1.1,https://github.com/uuidjs/uuid.git - v12.0.1,https://github.com/uuidjs/uuid.git - v13.0.1 |
None |
CVE-2026-41907Path to dependency file: /tutorials/vonage_video_react_app-feature-config/project/package.json Path to vulnerable library: /tutorials/vonage_video_react_app-feature-config/project/package.json Dependency Hierarchy: -> opentok-2.22.0.tgz (Root Library) -> ❌ uuid-11.0.5.tgz (Vulnerable Library) |
Critical |
9.8 | Transitive uuid-11.0.5.tgz |
opentok-2.22.0.tgz | Transitive https://github.com/uuidjs/uuid.git - v11.1.1,https://github.com/uuidjs/uuid.git - v12.0.1,https://github.com/uuidjs/uuid.git - v13.0.1 |
None |
CVE-2026-44494Path to dependency file: /tutorials/vonage_video_react_app-feature-config/project/package.json Path to vulnerable library: /tutorials/vonage_video_react_app-feature-config/project/package.json Dependency Hierarchy: -> ❌ axios-1.13.5.tgz (Vulnerable Library) |
 High |
8.7 | Direct axios-1.13.5.tgz |
axios-1.13.5.tgz | axios - 1.16.0 | None |
CVE-2026-44492Path to dependency file: /tutorials/vonage_video_react_app-feature-config/project/package.json Path to vulnerable library: /tutorials/vonage_video_react_app-feature-config/project/package.json Dependency Hierarchy: -> ❌ axios-1.13.5.tgz (Vulnerable Library) |
High |
8.6 | Direct axios-1.13.5.tgz |
axios-1.13.5.tgz | axios - 1.16.0,axios - 0.32.0 | None |
CVE-2026-4800Path to dependency file: /tutorials/vonage_video_react_app-feature-config/project/package.json Path to vulnerable library: /tutorials/vonage_video_react_app-feature-config/project/package.json Dependency Hierarchy: -> opentok-2.22.0.tgz (Root Library) -> ❌ lodash-4.17.21.tgz (Vulnerable Library) |
High |
8.1 | Transitive lodash-4.17.21.tgz |
opentok-2.22.0.tgz | Transitive lodash-amd - 4.18.0,lodash - 4.18.0,lodash.template - 4.18.0,lodash-es - 4.18.0 |
None |
CVE-2026-22029Path to dependency file: /tutorials/vonage_video_react_app-feature-config/project/package.json Path to vulnerable library: /tutorials/vonage_video_react_app-feature-config/project/package.json Dependency Hierarchy: -> react-router-dom-6.30.2.tgz (Root Library) -> ❌ router-1.23.1.tgz (Vulnerable Library) |
High |
8.0 | Transitive router-1.23.1.tgz |
react-router-dom-6.30.2.tgz | Transitive 1.23.2 |
None |
CVE-2026-44496Path to dependency file: /tutorials/vonage_video_react_app-feature-config/project/package.json Path to vulnerable library: /tutorials/vonage_video_react_app-feature-config/project/package.json Dependency Hierarchy: -> ❌ axios-1.13.5.tgz (Vulnerable Library) |
High |
7.5 | Direct axios-1.13.5.tgz |
axios-1.13.5.tgz | axios - 1.16.0,axios - 0.32.0 | None |
CVE-2026-44488Path to dependency file: /tutorials/vonage_video_react_app-feature-config/project/package.json Path to vulnerable library: /tutorials/vonage_video_react_app-feature-config/project/package.json Dependency Hierarchy: -> ❌ axios-1.13.5.tgz (Vulnerable Library) |
High |
7.5 | Direct axios-1.13.5.tgz |
axios-1.13.5.tgz | axios - 1.16.0 | None |
CVE-2026-44487Path to dependency file: /tutorials/vonage_video_react_app-feature-config/project/package.json Path to vulnerable library: /tutorials/vonage_video_react_app-feature-config/project/package.json Dependency Hierarchy: -> ❌ axios-1.13.5.tgz (Vulnerable Library) |
High |
7.5 | Direct axios-1.13.5.tgz |
axios-1.13.5.tgz | axios - 1.16.0,axios - 0.32.0 | None |
CVE-2026-44486Path to dependency file: /tutorials/vonage_video_react_app-feature-config/project/package.json Path to vulnerable library: /tutorials/vonage_video_react_app-feature-config/project/package.json Dependency Hierarchy: -> ❌ axios-1.13.5.tgz (Vulnerable Library) |
High |
7.5 | Direct axios-1.13.5.tgz |
axios-1.13.5.tgz | axios - 0.32.0,axios - 1.16.0 | None |
CVE-2026-41675Path to dependency file: /tutorials/vonage_video_react_app-feature-config/project/package.json Path to vulnerable library: /tutorials/vonage_video_react_app-feature-config/project/package.json Dependency Hierarchy: -> vivid-5.15.1.tgz (Root Library) -> video.js-8.23.7.tgz -> mpd-parser-1.3.1.tgz -> ❌ xmldom-0.8.11.tgz (Vulnerable Library) |
High |
7.5 | Transitive xmldom-0.8.11.tgz |
vivid-5.15.1.tgz | Transitive https://github.com/xmldom/xmldom.git - 0.8.13,https://github.com/xmldom/xmldom.git - 0.9.10 |
None |
CVE-2026-41674Path to dependency file: /tutorials/vonage_video_react_app-feature-config/project/package.json Path to vulnerable library: /tutorials/vonage_video_react_app-feature-config/project/package.json Dependency Hierarchy: -> vivid-5.15.1.tgz (Root Library) -> video.js-8.23.7.tgz -> mpd-parser-1.3.1.tgz -> ❌ xmldom-0.8.11.tgz (Vulnerable Library) |
High |
7.5 | Transitive xmldom-0.8.11.tgz |
vivid-5.15.1.tgz | Transitive https://github.com/xmldom/xmldom.git - 0.8.13,https://github.com/xmldom/xmldom.git - 0.9.10 |
None |
CVE-2026-41673Path to dependency file: /tutorials/vonage_video_react_app-feature-config/project/package.json Path to vulnerable library: /tutorials/vonage_video_react_app-feature-config/project/package.json Dependency Hierarchy: -> vivid-5.15.1.tgz (Root Library) -> video.js-8.23.7.tgz -> mpd-parser-1.3.1.tgz -> ❌ xmldom-0.8.11.tgz (Vulnerable Library) |
High |
7.5 | Transitive xmldom-0.8.11.tgz |
vivid-5.15.1.tgz | Transitive https://github.com/xmldom/xmldom.git - 0.8.13,https://github.com/xmldom/xmldom.git - 0.9.10 |
None |
CVE-2026-41672Path to dependency file: /tutorials/vonage_video_react_app-feature-config/project/package.json Path to vulnerable library: /tutorials/vonage_video_react_app-feature-config/project/package.json Dependency Hierarchy: -> vivid-5.15.1.tgz (Root Library) -> video.js-8.23.7.tgz -> mpd-parser-1.3.1.tgz -> ❌ xmldom-0.8.11.tgz (Vulnerable Library) |
High |
7.5 | Transitive xmldom-0.8.11.tgz |
vivid-5.15.1.tgz | Transitive https://github.com/xmldom/xmldom.git - 0.8.13,https://github.com/xmldom/xmldom.git - 0.9.10 |
None |
CVE-2026-40181Path to dependency file: /tutorials/vonage_video_react_app-feature-config/project/package.json Path to vulnerable library: /tutorials/vonage_video_react_app-feature-config/project/package.json Dependency Hierarchy: -> react-router-dom-6.30.2.tgz (Root Library) -> ❌ react-router-6.30.2.tgz (Vulnerable Library) |
High |
7.5 | Transitive react-router-6.30.2.tgz |
react-router-dom-6.30.2.tgz | Transitive 6.30.4 |
None |
CVE-2026-34601Path to dependency file: /tutorials/vonage_video_react_app-feature-config/project/package.json Path to vulnerable library: /tutorials/vonage_video_react_app-feature-config/project/package.json Dependency Hierarchy: -> vivid-5.15.1.tgz (Root Library) -> video.js-8.23.7.tgz -> mpd-parser-1.3.1.tgz -> ❌ xmldom-0.8.11.tgz (Vulnerable Library) |
High |
7.5 | Transitive xmldom-0.8.11.tgz |
vivid-5.15.1.tgz | Transitive https://github.com/xmldom/xmldom.git - 0.9.9 |
None |
CVE-2026-27904Path to dependency file: /tutorials/vonage_video_react_app-feature-config/project/package.json Path to vulnerable library: /tutorials/vonage_video_react_app-feature-config/project/package.json Dependency Hierarchy: -> vcr-sdk-1.3.0.tgz (Root Library) -> glob-10.5.0.tgz -> ❌ minimatch-9.0.5.tgz (Vulnerable Library) |
High |
7.5 | Transitive minimatch-9.0.5.tgz |
vcr-sdk-1.3.0.tgz | Transitive 9.0.7 |
None |
CVE-2026-27903Path to dependency file: /tutorials/vonage_video_react_app-feature-config/project/package.json Path to vulnerable library: /tutorials/vonage_video_react_app-feature-config/project/package.json Dependency Hierarchy: -> vcr-sdk-1.3.0.tgz (Root Library) -> glob-10.5.0.tgz -> ❌ minimatch-9.0.5.tgz (Vulnerable Library) |
High |
7.5 | Transitive minimatch-9.0.5.tgz |
vcr-sdk-1.3.0.tgz | Transitive https://github.com/isaacs/minimatch.git - v3.1.3,https://github.com/isaacs/minimatch.git - v4.2.5,https://github.com/isaacs/minimatch.git - v6.2.2,https://github.com/isaacs/minimatch.git - v10.2.3,https://github.com/isaacs/minimatch.git - v5.1.8,https://github.com/isaacs/minimatch.git - v9.0.7,https://github.com/isaacs/minimatch.git - v7.4.8,https://github.com/isaacs/minimatch.git - v8.0.6 |
None |
CVE-2026-26996Path to dependency file: /tutorials/vonage_video_react_app-feature-config/project/package.json Path to vulnerable library: /tutorials/vonage_video_react_app-feature-config/project/package.json Dependency Hierarchy: -> vcr-sdk-1.3.0.tgz (Root Library) -> glob-10.5.0.tgz -> ❌ minimatch-9.0.5.tgz (Vulnerable Library) |
High |
7.5 | Transitive minimatch-9.0.5.tgz |
vcr-sdk-1.3.0.tgz | Transitive https://github.com/isaacs/minimatch.git - v10.2.1,https://github.com/isaacs/minimatch.git - v5.1.7,https://github.com/isaacs/minimatch.git - v4.2.4,https://github.com/isaacs/minimatch.git - v3.1.3,https://github.com/isaacs/minimatch.git - v8.0.5,https://github.com/isaacs/minimatch.git - v9.0.6,https://github.com/isaacs/minimatch.git - v6.2.1,https://github.com/isaacs/minimatch.git - v7.4.7 |
None |
CVE-2025-12758Path to dependency file: /tutorials/vonage_video_react_app-feature-config/project/package.json Path to vulnerable library: /tutorials/vonage_video_react_app-feature-config/project/package.json Dependency Hierarchy: -> ❌ validator-13.15.15.tgz (Vulnerable Library) |
High |
7.5 | Direct validator-13.15.15.tgz |
validator-13.15.15.tgz | 13.15.22 | None |
CVE-2026-42264Path to dependency file: /tutorials/vonage_video_react_app-feature-config/project/package.json Path to vulnerable library: /tutorials/vonage_video_react_app-feature-config/project/package.json Dependency Hierarchy: -> ❌ axios-1.13.5.tgz (Vulnerable Library) |
High |
7.4 | Direct axios-1.13.5.tgz |
axios-1.13.5.tgz | 1.15.2 | None |
CVE-2026-42035Path to dependency file: /tutorials/vonage_video_react_app-feature-config/project/package.json Path to vulnerable library: /tutorials/vonage_video_react_app-feature-config/project/package.json Dependency Hierarchy: -> ❌ axios-1.13.5.tgz (Vulnerable Library) |
High |
7.4 | Direct axios-1.13.5.tgz |
axios-1.13.5.tgz | 1.15.1 | None |
CVE-2026-42033Path to dependency file: /tutorials/vonage_video_react_app-feature-config/project/package.json Path to vulnerable library: /tutorials/vonage_video_react_app-feature-config/project/package.json Dependency Hierarchy: -> ❌ axios-1.13.5.tgz (Vulnerable Library) |
High |
7.4 | Direct axios-1.13.5.tgz |
axios-1.13.5.tgz | 1.15.1 | None |
CVE-2026-42043Path to dependency file: /tutorials/vonage_video_react_app-feature-config/project/package.json Path to vulnerable library: /tutorials/vonage_video_react_app-feature-config/project/package.json Dependency Hierarchy: -> ❌ axios-1.13.5.tgz (Vulnerable Library) |
High |
7.2 | Direct axios-1.13.5.tgz |
axios-1.13.5.tgz | 1.15.1 | None |
CVE-2025-62718Path to dependency file: /tutorials/vonage_video_react_app-feature-config/project/package.json Path to vulnerable library: /tutorials/vonage_video_react_app-feature-config/project/package.json Dependency Hierarchy: -> ❌ axios-1.13.5.tgz (Vulnerable Library) |
High |
7.2 | Direct axios-1.13.5.tgz |
axios-1.13.5.tgz | 1.15.0 | None |
CVE-2025-13465Path to dependency file: /tutorials/vonage_video_react_app-feature-config/project/package.json Path to vulnerable library: /tutorials/vonage_video_react_app-feature-config/project/package.json Dependency Hierarchy: -> opentok-2.22.0.tgz (Root Library) -> ❌ lodash-4.17.21.tgz (Vulnerable Library) |
High |
7.2 | Transitive lodash-4.17.21.tgz |
opentok-2.22.0.tgz | Transitive lodash-amd - 4.17.23,lodash - 4.17.23,lodash-es - 4.17.23 |
None |
CVE-2026-44495Path to dependency file: /tutorials/vonage_video_react_app-feature-config/project/package.json Path to vulnerable library: /tutorials/vonage_video_react_app-feature-config/project/package.json Dependency Hierarchy: -> ❌ axios-1.13.5.tgz (Vulnerable Library) |
High |
7.0 | Direct axios-1.13.5.tgz |
axios-1.13.5.tgz | axios - 1.15.2,axios - 0.31.1 | None |
CVE-2026-41238Path to dependency file: /tutorials/vonage_video_react_app-feature-config/project/package.json Path to vulnerable library: /tutorials/vonage_video_react_app-feature-config/project/package.json Dependency Hierarchy: -> vivid-5.15.1.tgz (Root Library) -> ❌ dompurify-3.3.3.tgz (Vulnerable Library) |
 Medium |
6.9 | Transitive dompurify-3.3.3.tgz |
vivid-5.15.1.tgz | Transitive 3.4.0 |
None |
CVE-2026-42038Path to dependency file: /tutorials/vonage_video_react_app-feature-config/project/package.json Path to vulnerable library: /tutorials/vonage_video_react_app-feature-config/project/package.json Dependency Hierarchy: -> ❌ axios-1.13.5.tgz (Vulnerable Library) |
Medium |
6.8 | Direct axios-1.13.5.tgz |
axios-1.13.5.tgz | 1.15.1 | None |
CVE-2026-41239Path to dependency file: /tutorials/vonage_video_react_app-feature-config/project/package.json Path to vulnerable library: /tutorials/vonage_video_react_app-feature-config/project/package.json Dependency Hierarchy: -> vivid-5.15.1.tgz (Root Library) -> ❌ dompurify-3.3.3.tgz (Vulnerable Library) |
Medium |
6.8 | Transitive dompurify-3.3.3.tgz |
vivid-5.15.1.tgz | Transitive 3.4.0 |
None |
CVE-2026-42044Path to dependency file: /tutorials/vonage_video_react_app-feature-config/project/package.json Path to vulnerable library: /tutorials/vonage_video_react_app-feature-config/project/package.json Dependency Hierarchy: -> ❌ axios-1.13.5.tgz (Vulnerable Library) |
Medium |
6.5 | Direct axios-1.13.5.tgz |
axios-1.13.5.tgz | 1.15.2 | None |
CVE-2026-41240Path to dependency file: /tutorials/vonage_video_react_app-feature-config/project/package.json Path to vulnerable library: /tutorials/vonage_video_react_app-feature-config/project/package.json Dependency Hierarchy: -> vivid-5.15.1.tgz (Root Library) -> ❌ dompurify-3.3.3.tgz (Vulnerable Library) |
Medium |
6.5 | Transitive dompurify-3.3.3.tgz |
vivid-5.15.1.tgz | Transitive 3.4.0 |
None |
CVE-2026-33750Path to dependency file: /tutorials/vonage_video_react_app-feature-config/project/package.json Path to vulnerable library: /tutorials/vonage_video_react_app-feature-config/project/package.json Dependency Hierarchy: -> vcr-sdk-1.3.0.tgz (Root Library) -> glob-10.5.0.tgz -> minimatch-9.0.5.tgz -> ❌ brace-expansion-2.0.2.tgz (Vulnerable Library) |
Medium |
6.5 | Transitive brace-expansion-2.0.2.tgz |
vcr-sdk-1.3.0.tgz | Transitive https://github.com/juliangruber/brace-expansion.git - v2.0.3,https://github.com/juliangruber/brace-expansion.git - v3.0.2,https://github.com/juliangruber/brace-expansion.git - v5.0.5,https://github.com/juliangruber/brace-expansion.git - v1.1.13 |
None |
CVE-2026-2950Path to dependency file: /tutorials/vonage_video_react_app-feature-config/project/package.json Path to vulnerable library: /tutorials/vonage_video_react_app-feature-config/project/package.json Dependency Hierarchy: -> opentok-2.22.0.tgz (Root Library) -> ❌ lodash-4.17.21.tgz (Vulnerable Library) |
Medium |
6.5 | Transitive lodash-4.17.21.tgz |
opentok-2.22.0.tgz | Transitive 4.17.23 |
None |
CVE-2026-49978Path to dependency file: /tutorials/vonage_video_react_app-feature-config/project/package.json Path to vulnerable library: /tutorials/vonage_video_react_app-feature-config/project/package.json Dependency Hierarchy: -> vivid-5.15.1.tgz (Root Library) -> ❌ dompurify-3.3.3.tgz (Vulnerable Library) |
Medium |
6.1 | Transitive dompurify-3.3.3.tgz |
vivid-5.15.1.tgz | Transitive https://github.com/cure53/DOMPurify.git - 3.4.7 |
None |
CVE-2026-49459Path to dependency file: /tutorials/vonage_video_react_app-feature-config/project/package.json Path to vulnerable library: /tutorials/vonage_video_react_app-feature-config/project/package.json Dependency Hierarchy: -> vivid-5.15.1.tgz (Root Library) -> ❌ dompurify-3.3.3.tgz (Vulnerable Library) |
Medium |
6.1 | Transitive dompurify-3.3.3.tgz |
vivid-5.15.1.tgz | Transitive https://github.com/cure53/DOMPurify.git - 3.4.6,dompurify - 3.4.6 |
None |
CVE-2026-49458Path to dependency file: /tutorials/vonage_video_react_app-feature-config/project/package.json Path to vulnerable library: /tutorials/vonage_video_react_app-feature-config/project/package.json Dependency Hierarchy: -> vivid-5.15.1.tgz (Root Library) -> ❌ dompurify-3.3.3.tgz (Vulnerable Library) |
Medium |
6.1 | Transitive dompurify-3.3.3.tgz |
vivid-5.15.1.tgz | Transitive https://github.com/cure53/DOMPurify.git - 3.4.6 |
None |
CVE-2025-56200Path to dependency file: /tutorials/vonage_video_react_app-feature-config/project/package.json Path to vulnerable library: /tutorials/vonage_video_react_app-feature-config/project/package.json Dependency Hierarchy: -> ❌ validator-13.15.15.tgz (Vulnerable Library) |
Medium |
6.1 | Direct validator-13.15.15.tgz |
validator-13.15.15.tgz | validator - 13.15.20 | None |
CVE-2026-42042Path to dependency file: /tutorials/vonage_video_react_app-feature-config/project/package.json Path to vulnerable library: /tutorials/vonage_video_react_app-feature-config/project/package.json Dependency Hierarchy: -> ❌ axios-1.13.5.tgz (Vulnerable Library) |
Medium |
5.4 | Direct axios-1.13.5.tgz |
axios-1.13.5.tgz | 1.15.1 | None |
CVE-2026-42039Path to dependency file: /tutorials/vonage_video_react_app-feature-config/project/package.json Path to vulnerable library: /tutorials/vonage_video_react_app-feature-config/project/package.json Dependency Hierarchy: -> ❌ axios-1.13.5.tgz (Vulnerable Library) |
Medium |
5.3 | Direct axios-1.13.5.tgz |
axios-1.13.5.tgz | 1.15.1 | None |
CVE-2026-42037Path to dependency file: /tutorials/vonage_video_react_app-feature-config/project/package.json Path to vulnerable library: /tutorials/vonage_video_react_app-feature-config/project/package.json Dependency Hierarchy: -> ❌ axios-1.13.5.tgz (Vulnerable Library) |
Medium |
5.3 | Direct axios-1.13.5.tgz |
axios-1.13.5.tgz | 1.15.1 | None |
CVE-2026-42036Path to dependency file: /tutorials/vonage_video_react_app-feature-config/project/package.json Path to vulnerable library: /tutorials/vonage_video_react_app-feature-config/project/package.json Dependency Hierarchy: -> ❌ axios-1.13.5.tgz (Vulnerable Library) |
Medium |
5.3 | Direct axios-1.13.5.tgz |
axios-1.13.5.tgz | 1.15.1 | None |
CVE-2026-42034Path to dependency file: /tutorials/vonage_video_react_app-feature-config/project/package.json Path to vulnerable library: /tutorials/vonage_video_react_app-feature-config/project/package.json Dependency Hierarchy: -> ❌ axios-1.13.5.tgz (Vulnerable Library) |
Medium |
5.3 | Direct axios-1.13.5.tgz |
axios-1.13.5.tgz | 1.15.1 | None |
CVE-2026-40895Path to dependency file: /tutorials/vonage_video_react_app-feature-config/project/package.json Path to vulnerable library: /tutorials/vonage_video_react_app-feature-config/project/package.json Dependency Hierarchy: -> axios-1.13.5.tgz (Root Library) -> ❌ follow-redirects-1.15.11.tgz (Vulnerable Library) |
Medium |
5.3 | Transitive follow-redirects-1.15.11.tgz |
axios-1.13.5.tgz | Transitive 1.16.0 |
None |
CVE-2026-40895Path to dependency file: /tutorials/vonage_video_react_app-feature-config/project/package.json Path to vulnerable library: /tutorials/vonage_video_react_app-feature-config/project/package.json Dependency Hierarchy: -> video-client-network-test-5.0.0.tgz (Root Library) -> axios-1.13.5.tgz -> ❌ follow-redirects-1.15.11.tgz (Vulnerable Library) |
Medium |
5.3 | Transitive follow-redirects-1.15.11.tgz |
video-client-network-test-5.0.0.tgz | Transitive 1.16.0 |
None |
CVE-2026-40895Path to dependency file: /tutorials/vonage_video_react_app-feature-config/project/package.json Path to vulnerable library: /tutorials/vonage_video_react_app-feature-config/project/package.json Dependency Hierarchy: -> vcr-sdk-1.3.0.tgz (Root Library) -> axios-1.13.5.tgz -> ❌ follow-redirects-1.15.11.tgz (Vulnerable Library) |
Medium |
5.3 | Transitive follow-redirects-1.15.11.tgz |
vcr-sdk-1.3.0.tgz | Transitive 1.16.0 |
None |
CVE-2026-40895Path to dependency file: /tutorials/vonage_video_react_app-feature-config/project/package.json Path to vulnerable library: /tutorials/vonage_video_react_app-feature-config/project/package.json Dependency Hierarchy: -> opentok-solutions-logging-1.1.5.tgz (Root Library) -> axios-1.13.5.tgz -> ❌ follow-redirects-1.15.11.tgz (Vulnerable Library) |
Medium |
5.3 | Transitive follow-redirects-1.15.11.tgz |
opentok-solutions-logging-1.1.5.tgz | Transitive 1.16.0 |
None |
CVE-2026-44490Path to dependency file: /tutorials/vonage_video_react_app-feature-config/project/package.json Path to vulnerable library: /tutorials/vonage_video_react_app-feature-config/project/package.json Dependency Hierarchy: -> ❌ axios-1.13.5.tgz (Vulnerable Library) |
Medium |
4.8 | Direct axios-1.13.5.tgz |
axios-1.13.5.tgz | axios - 0.32.0,axios - 1.16.0 | None |
CVE-2026-42041Path to dependency file: /tutorials/vonage_video_react_app-feature-config/project/package.json Path to vulnerable library: /tutorials/vonage_video_react_app-feature-config/project/package.json Dependency Hierarchy: -> ❌ axios-1.13.5.tgz (Vulnerable Library) |
Medium |
4.8 | Direct axios-1.13.5.tgz |
axios-1.13.5.tgz | 1.15.1 | None |
CVE-2026-40175Path to dependency file: /tutorials/vonage_video_react_app-feature-config/project/package.json Path to vulnerable library: /tutorials/vonage_video_react_app-feature-config/project/package.json Dependency Hierarchy: -> ❌ axios-1.13.5.tgz (Vulnerable Library) |
Medium |
4.8 | Direct axios-1.13.5.tgz |
axios-1.13.5.tgz | https://github.com/axios/axios.git - v1.15.0 | None |
CVE-2026-33532Path to dependency file: /tutorials/vonage_video_react_app-feature-config/project/package.json Path to vulnerable library: /tutorials/vonage_video_react_app-feature-config/project/package.json Dependency Hierarchy: -> css-11.13.5.tgz (Root Library) -> babel-plugin-11.13.5.tgz -> babel-plugin-macros-3.1.0.tgz -> cosmiconfig-7.1.0.tgz -> ❌ yaml-1.10.2.tgz (Vulnerable Library) |
Medium |
4.3 | Transitive yaml-1.10.2.tgz |
css-11.13.5.tgz | Transitive https://github.com/eemeli/yaml.git - v1.10.3,https://github.com/eemeli/yaml.git - v2.8.3 |
None |
CVE-2026-42040Path to dependency file: /tutorials/vonage_video_react_app-feature-config/project/package.json Path to vulnerable library: /tutorials/vonage_video_react_app-feature-config/project/package.json Dependency Hierarchy: -> ❌ axios-1.13.5.tgz (Vulnerable Library) |
 Low |
3.7 | Direct axios-1.13.5.tgz |
axios-1.13.5.tgz | 1.15.1 | None |
CVE-2026-41988Path to dependency file: /tutorials/vonage_video_react_app-feature-config/project/package.json Path to vulnerable library: /tutorials/vonage_video_react_app-feature-config/project/package.json Dependency Hierarchy: -> vivid-5.15.1.tgz (Root Library) -> ❌ uuid-11.1.0.tgz (Vulnerable Library) |
Low |
3.2 | Transitive uuid-11.1.0.tgz |
vivid-5.15.1.tgz | Transitive 11.1.1 |
None |
CVE-2026-41988Path to dependency file: /tutorials/vonage_video_react_app-feature-config/project/package.json Path to vulnerable library: /tutorials/vonage_video_react_app-feature-config/project/package.json Dependency Hierarchy: -> opentok-2.22.0.tgz (Root Library) -> ❌ uuid-11.0.5.tgz (Vulnerable Library) |
Low |
3.2 | Transitive uuid-11.0.5.tgz |
opentok-2.22.0.tgz | Transitive 11.1.1 |
None |
Base branch total remaining vulnerabilities: 29
Base branch commit: dfef31847e94e5c5348657ad64cfc12442623898
Total libraries scanned: 1427
Scan token: d7b9764a3aa34276a80eba29c3f92fa5