Infrastructure: Implement master/dev/vX branching, save git path, and fix username casing

This commit is contained in:
Daniel Bedeleanu
2026-04-10 21:51:22 +03:00
parent 93edcc261b
commit 8a3783c7e9
3397 changed files with 57402 additions and 98 deletions

14
scratch/copy_logo.py Normal file
View File

@@ -0,0 +1,14 @@
import shutil
import os
src = "/Users/danielbedeleanu/.gemini/antigravity/brain/edc2a8fe-a092-4172-b93b-b75c7b690fac/media__1775837015390.jpg"
dst = "/Users/danielbedeleanu/_nu_Backup/_BEDE_/_programare_2026_/cu.AI/inventory/frontend/public/logo.png"
try:
if os.path.exists(src):
shutil.copyfile(src, dst)
print("Logo copied successfully.")
else:
print(f"Source file not found at {src}")
except Exception as e:
print(f"Error copying logo: {e}")

View File

@@ -0,0 +1 @@
{"source":"eFNtzbT6LH+aVgtnHJMFXlU4W60PHAG/b+J5+HV+6YNoVmhqHF0XS+m8/aomiliuXln/fmKdxokfjndU4WeviQ==","name":"next-pwa","dependency":"workbox-webpack-plugin","title":"Depends on vulnerable versions of workbox-webpack-plugin","url":null,"severity":"high","versions":["0.0.1","0.0.2","0.0.3","0.0.4","0.0.5","0.0.6","0.0.7","0.0.8","0.0.9","0.0.10","0.0.11","0.0.12","0.0.13","0.0.14","0.0.15","1.0.0","1.0.1","1.0.2","1.0.3","1.0.4","1.0.5","1.0.7","1.0.8","1.0.9","1.0.10","1.1.0","1.1.1","2.0.0","2.0.1","2.0.2","2.1.0","2.1.1","2.1.2","2.1.3","2.2.0","2.2.1","2.3.0","2.3.1","2.3.2","2.3.3","2.4.0","2.4.1","2.5.0","2.6.0","2.6.1","2.6.2","2.6.3","3.0.0","3.0.1","3.0.2","3.0.3","3.1.0","3.1.1","3.1.2","3.1.3","3.1.4","3.1.5","4.0.0-beta.0","5.0.0","5.0.1","5.0.2","5.0.3","5.0.4","5.0.5","5.0.6","5.1.0","5.1.1","5.1.2","5.1.3","5.1.4","5.2.0","5.2.1","5.2.2","5.2.3","5.2.4","5.2.5","5.2.6","5.2.7","5.2.8","5.2.9","5.2.10","5.2.11","5.2.12","5.2.13","5.2.14","5.2.15","5.2.16","5.2.17","5.2.18","5.2.19","5.2.20","5.2.21","5.2.22","5.2.23","5.2.24","5.2.25","5.3.0","5.3.1","5.3.2","5.4.0","5.4.1","5.4.2","5.4.3","5.4.4","5.4.5","5.4.6","5.4.7","5.5.0","5.5.1","5.5.2","5.5.3","5.5.4","5.5.5","5.5.6","5.6.0"],"vulnerableVersions":["2.1.0","2.1.1","2.1.2","2.1.3","2.2.0","2.2.1","2.3.0","2.3.1","2.3.2","2.3.3","2.4.0","2.4.1","2.5.0","2.6.0","2.6.1","2.6.2","2.6.3","3.0.0","3.0.1","3.0.2","3.0.3","3.1.0","3.1.1","3.1.2","3.1.3","3.1.4","3.1.5","4.0.0-beta.0","5.0.0","5.0.1","5.0.2","5.0.3","5.0.4","5.0.5","5.0.6","5.1.0","5.1.1","5.1.2","5.1.3","5.1.4","5.2.0","5.2.1","5.2.2","5.2.3","5.2.4","5.2.5","5.2.6","5.2.7","5.2.8","5.2.9","5.2.10","5.2.11","5.2.12","5.2.13","5.2.14","5.2.15","5.2.16","5.2.17","5.2.18","5.2.19","5.2.20","5.2.21","5.2.22","5.2.23","5.2.24","5.2.25","5.3.0","5.3.1","5.3.2","5.4.0","5.4.1","5.4.2","5.4.3","5.4.4","5.4.5","5.4.6","5.4.7","5.5.0","5.5.1","5.5.2","5.5.3","5.5.4","5.5.5","5.5.6","5.6.0"],"cwe":["CWE-96"],"cvss":{"score":8.1,"vectorString":"CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H"},"range":">=2.1.0","id":"88tExnM6g906ABSqFcS98oM88oa1E5edtPcKCFB0hy2x9n7A2i0R9+t9xJ0LssExEOgiSiinP6QBcUfAHypfog=="}

View File

@@ -0,0 +1 @@
{"source":1115723,"name":"serialize-javascript","dependency":"serialize-javascript","title":"Serialize JavaScript has CPU Exhaustion Denial of Service via crafted array-like objects","url":"https://github.com/advisories/GHSA-qj8w-gfj5-8c6v","severity":"moderate","versions":["1.0.0","1.1.2","1.2.0","1.3.0","1.4.0","1.5.0","1.6.0","1.6.1","1.7.0","1.8.0","1.9.0","1.9.1","2.0.0","2.1.0","2.1.1","2.1.2","3.0.0","3.1.0","4.0.0","5.0.0","5.0.1","6.0.0","6.0.1","6.0.2","7.0.0","7.0.1","7.0.2","7.0.3","7.0.4","7.0.5"],"vulnerableVersions":["1.0.0","1.1.2","1.2.0","1.3.0","1.4.0","1.5.0","1.6.0","1.6.1","1.7.0","1.8.0","1.9.0","1.9.1","2.0.0","2.1.0","2.1.1","2.1.2","3.0.0","3.1.0","4.0.0","5.0.0","5.0.1","6.0.0","6.0.1","6.0.2","7.0.0","7.0.1","7.0.2","7.0.3","7.0.4"],"cwe":["CWE-400","CWE-834"],"cvss":{"score":5.9,"vectorString":"CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:H"},"range":"<7.0.5","id":"y5ht5IaVIMjpwL0IZGKIrAJO+O1KQhhG2+VGCBx2lcZuGkhWWkccmfdEpDP4g3jX06lLdfGiDu1+ptdkafpN0Q=="}

View File

@@ -0,0 +1 @@
{"source":1097679,"name":"axios","dependency":"axios","title":"Axios Cross-Site Request Forgery Vulnerability","url":"https://github.com/advisories/GHSA-wf5p-g6vw-rhxx","severity":"moderate","versions":["0.1.0","0.2.0","0.2.1","0.2.2","0.3.0","0.3.1","0.4.0","0.4.1","0.4.2","0.5.0","0.5.1","0.5.2","0.5.3","0.5.4","0.6.0","0.7.0","0.8.0","0.8.1","0.9.0","0.9.1","0.10.0","0.11.0","0.11.1","0.12.0","0.13.0","0.13.1","0.14.0","0.15.0","0.15.1","0.15.2","0.15.3","0.16.0","0.16.1","0.16.2","0.17.0","0.17.1","0.18.0","0.18.1","0.19.0-beta.1","0.19.0","0.19.1","0.19.2","0.20.0-0","0.20.0","0.21.0","0.21.1","0.21.2","0.21.3","0.21.4","0.22.0","0.23.0","0.24.0","0.25.0","0.26.0","0.26.1","0.27.0","0.27.1","0.27.2","0.28.0","0.28.1","0.29.0","0.30.0","0.30.1","0.30.2","0.30.3","1.0.0-alpha.1","1.0.0","1.1.0","1.1.1","1.1.2","1.1.3","1.2.0-alpha.1","1.2.0","1.2.1","1.2.2","1.2.3","1.2.4","1.2.5","1.2.6","1.3.0","1.3.1","1.3.2","1.3.3","1.3.4","1.3.5","1.3.6","1.4.0","1.5.0","1.5.1","1.6.0","1.6.1","1.6.2","1.6.3","1.6.4","1.6.5","1.6.6","1.6.7","1.6.8","1.7.0-beta.0","1.7.0-beta.1","1.7.0-beta.2","1.7.0","1.7.1","1.7.2","1.7.3","1.7.4","1.7.5","1.7.6","1.7.7","1.7.8","1.7.9","1.8.0","1.8.1","1.8.2","1.8.3","1.8.4","1.9.0","1.10.0","1.11.0","1.12.0","1.12.1","1.12.2","1.13.0","1.13.1","1.13.2","1.13.3","1.13.4","1.13.5","1.13.6","1.14.0","1.15.0"],"vulnerableVersions":["0.8.1","0.9.0","0.9.1","0.10.0","0.11.0","0.11.1","0.12.0","0.13.0","0.13.1","0.14.0","0.15.0","0.15.1","0.15.2","0.15.3","0.16.0","0.16.1","0.16.2","0.17.0","0.17.1","0.18.0","0.18.1","0.19.0-beta.1","0.19.0","0.19.1","0.19.2","0.20.0-0","0.20.0","0.21.0","0.21.1","0.21.2","0.21.3","0.21.4","0.22.0","0.23.0","0.24.0","0.25.0","0.26.0","0.26.1","0.27.0","0.27.1","0.27.2"],"cwe":["CWE-352"],"cvss":{"score":6.5,"vectorString":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:N/A:N"},"range":">=0.8.1 <0.28.0","id":"Oi6B9AucyObhJnAMQYb3eyigkQbiqrclLJ09eDn16DgUHYfFa+9WQjxUGArwnF1cWOy0gbdKMrAbkp8xW8Fwkg=="}

View File

@@ -0,0 +1 @@
{"source":1116365,"name":"axios","dependency":"axios","title":"Axios has a NO_PROXY Hostname Normalization Bypass Leads to SSRF","url":"https://github.com/advisories/GHSA-3p68-rc4w-qgx5","severity":"critical","versions":["0.1.0","0.2.0","0.2.1","0.2.2","0.3.0","0.3.1","0.4.0","0.4.1","0.4.2","0.5.0","0.5.1","0.5.2","0.5.3","0.5.4","0.6.0","0.7.0","0.8.0","0.8.1","0.9.0","0.9.1","0.10.0","0.11.0","0.11.1","0.12.0","0.13.0","0.13.1","0.14.0","0.15.0","0.15.1","0.15.2","0.15.3","0.16.0","0.16.1","0.16.2","0.17.0","0.17.1","0.18.0","0.18.1","0.19.0-beta.1","0.19.0","0.19.1","0.19.2","0.20.0-0","0.20.0","0.21.0","0.21.1","0.21.2","0.21.3","0.21.4","0.22.0","0.23.0","0.24.0","0.25.0","0.26.0","0.26.1","0.27.0","0.27.1","0.27.2","0.28.0","0.28.1","0.29.0","0.30.0","0.30.1","0.30.2","0.30.3","1.0.0-alpha.1","1.0.0","1.1.0","1.1.1","1.1.2","1.1.3","1.2.0-alpha.1","1.2.0","1.2.1","1.2.2","1.2.3","1.2.4","1.2.5","1.2.6","1.3.0","1.3.1","1.3.2","1.3.3","1.3.4","1.3.5","1.3.6","1.4.0","1.5.0","1.5.1","1.6.0","1.6.1","1.6.2","1.6.3","1.6.4","1.6.5","1.6.6","1.6.7","1.6.8","1.7.0-beta.0","1.7.0-beta.1","1.7.0-beta.2","1.7.0","1.7.1","1.7.2","1.7.3","1.7.4","1.7.5","1.7.6","1.7.7","1.7.8","1.7.9","1.8.0","1.8.1","1.8.2","1.8.3","1.8.4","1.9.0","1.10.0","1.11.0","1.12.0","1.12.1","1.12.2","1.13.0","1.13.1","1.13.2","1.13.3","1.13.4","1.13.5","1.13.6","1.14.0","1.15.0"],"vulnerableVersions":["0.1.0","0.2.0","0.2.1","0.2.2","0.3.0","0.3.1","0.4.0","0.4.1","0.4.2","0.5.0","0.5.1","0.5.2","0.5.3","0.5.4","0.6.0","0.7.0","0.8.0","0.8.1","0.9.0","0.9.1","0.10.0","0.11.0","0.11.1","0.12.0","0.13.0","0.13.1","0.14.0","0.15.0","0.15.1","0.15.2","0.15.3","0.16.0","0.16.1","0.16.2","0.17.0","0.17.1","0.18.0","0.18.1","0.19.0-beta.1","0.19.0","0.19.1","0.19.2","0.20.0-0","0.20.0","0.21.0","0.21.1","0.21.2","0.21.3","0.21.4","0.22.0","0.23.0","0.24.0","0.25.0","0.26.0","0.26.1","0.27.0","0.27.1","0.27.2","0.28.0","0.28.1","0.29.0","0.30.0","0.30.1","0.30.2","0.30.3","1.0.0-alpha.1","1.0.0","1.1.0","1.1.1","1.1.2","1.1.3","1.2.0-alpha.1","1.2.0","1.2.1","1.2.2","1.2.3","1.2.4","1.2.5","1.2.6","1.3.0","1.3.1","1.3.2","1.3.3","1.3.4","1.3.5","1.3.6","1.4.0","1.5.0","1.5.1","1.6.0","1.6.1","1.6.2","1.6.3","1.6.4","1.6.5","1.6.6","1.6.7","1.6.8","1.7.0-beta.0","1.7.0-beta.1","1.7.0-beta.2","1.7.0","1.7.1","1.7.2","1.7.3","1.7.4","1.7.5","1.7.6","1.7.7","1.7.8","1.7.9","1.8.0","1.8.1","1.8.2","1.8.3","1.8.4","1.9.0","1.10.0","1.11.0","1.12.0","1.12.1","1.12.2","1.13.0","1.13.1","1.13.2","1.13.3","1.13.4","1.13.5","1.13.6","1.14.0"],"cwe":["CWE-441","CWE-918"],"cvss":{"score":0,"vectorString":null},"range":"<1.15.0","id":"Z+lafv96l3802R7eK9U1FqqdvtU3qAtd6Vjo/qI4MHGVFOxeQI8geYPXc7G2ZVhRxotKx8KWuVl/nLXQ2lGueQ=="}

View File

@@ -0,0 +1 @@
{"source":1111034,"name":"axios","dependency":"axios","title":"axios Requests Vulnerable To Possible SSRF and Credential Leakage via Absolute URL","url":"https://github.com/advisories/GHSA-jr5f-v2jv-69x6","severity":"high","versions":["0.1.0","0.2.0","0.2.1","0.2.2","0.3.0","0.3.1","0.4.0","0.4.1","0.4.2","0.5.0","0.5.1","0.5.2","0.5.3","0.5.4","0.6.0","0.7.0","0.8.0","0.8.1","0.9.0","0.9.1","0.10.0","0.11.0","0.11.1","0.12.0","0.13.0","0.13.1","0.14.0","0.15.0","0.15.1","0.15.2","0.15.3","0.16.0","0.16.1","0.16.2","0.17.0","0.17.1","0.18.0","0.18.1","0.19.0-beta.1","0.19.0","0.19.1","0.19.2","0.20.0-0","0.20.0","0.21.0","0.21.1","0.21.2","0.21.3","0.21.4","0.22.0","0.23.0","0.24.0","0.25.0","0.26.0","0.26.1","0.27.0","0.27.1","0.27.2","0.28.0","0.28.1","0.29.0","0.30.0","0.30.1","0.30.2","0.30.3","1.0.0-alpha.1","1.0.0","1.1.0","1.1.1","1.1.2","1.1.3","1.2.0-alpha.1","1.2.0","1.2.1","1.2.2","1.2.3","1.2.4","1.2.5","1.2.6","1.3.0","1.3.1","1.3.2","1.3.3","1.3.4","1.3.5","1.3.6","1.4.0","1.5.0","1.5.1","1.6.0","1.6.1","1.6.2","1.6.3","1.6.4","1.6.5","1.6.6","1.6.7","1.6.8","1.7.0-beta.0","1.7.0-beta.1","1.7.0-beta.2","1.7.0","1.7.1","1.7.2","1.7.3","1.7.4","1.7.5","1.7.6","1.7.7","1.7.8","1.7.9","1.8.0","1.8.1","1.8.2","1.8.3","1.8.4","1.9.0","1.10.0","1.11.0","1.12.0","1.12.1","1.12.2","1.13.0","1.13.1","1.13.2","1.13.3","1.13.4","1.13.5","1.13.6","1.14.0","1.15.0"],"vulnerableVersions":["0.1.0","0.2.0","0.2.1","0.2.2","0.3.0","0.3.1","0.4.0","0.4.1","0.4.2","0.5.0","0.5.1","0.5.2","0.5.3","0.5.4","0.6.0","0.7.0","0.8.0","0.8.1","0.9.0","0.9.1","0.10.0","0.11.0","0.11.1","0.12.0","0.13.0","0.13.1","0.14.0","0.15.0","0.15.1","0.15.2","0.15.3","0.16.0","0.16.1","0.16.2","0.17.0","0.17.1","0.18.0","0.18.1","0.19.0-beta.1","0.19.0","0.19.1","0.19.2","0.20.0-0","0.20.0","0.21.0","0.21.1","0.21.2","0.21.3","0.21.4","0.22.0","0.23.0","0.24.0","0.25.0","0.26.0","0.26.1","0.27.0","0.27.1","0.27.2","0.28.0","0.28.1","0.29.0"],"cwe":["CWE-918"],"cvss":{"score":0,"vectorString":null},"range":"<0.30.0","id":"We3wxcPk9kkn0xwhYIVh3tbSPV88qcTDaObr31jY6FxiY7XBPfg0F6J9WCgTA+9XIQ528JIUG23csmksMa5djw=="}

View File

@@ -0,0 +1 @@
{"source":"We3wxcPk9kkn0xwhYIVh3tbSPV88qcTDaObr31jY6FxiY7XBPfg0F6J9WCgTA+9XIQ528JIUG23csmksMa5djw==","name":"localtunnel","dependency":"axios","title":"Depends on vulnerable versions of axios","url":null,"severity":"high","versions":["0.0.0","0.0.1","0.0.2","0.0.3","0.0.4","0.1.0","0.1.1","0.1.2","0.1.3","0.2.0","0.2.1","0.2.2","1.0.0","1.1.0","1.1.1","1.1.2","1.2.0","1.3.0","1.4.0","1.5.0","1.5.1","1.6.0","1.7.0","1.8.0","1.8.1","1.8.2","1.8.3","1.9.0","1.9.1","1.9.2","2.0.0","2.0.1","2.0.2"],"vulnerableVersions":["1.9.0","1.9.1","1.9.2","2.0.0","2.0.1","2.0.2"],"cwe":["CWE-918"],"cvss":{"score":0,"vectorString":null},"range":">=1.9.0","id":"qnHg0kOXBzHk3moH5p+wiqSKP+qHHrmUCLZLYwsnp93NmKcYVsPjbcWHSL+5YRSlC7+SYGpukALjpTZUf9BTJQ=="}

View File

@@ -0,0 +1 @@
{"source":"w4jSu3agPpZzMQ4NleZi30m2ZrpuzGOgLlw9lbt9lsWmhEmrxMpqTlQ58s2SBPZax1B0Gdul+SbJjxcBrB4M1A==","name":"workbox-webpack-plugin","dependency":"workbox-build","title":"Depends on vulnerable versions of workbox-build","url":null,"severity":"high","versions":["0.0.1","0.0.2","0.0.3","1.0.0","1.0.1","1.1.0","1.2.0","1.3.0","2.0.0","2.0.1","2.0.2-2.0.2-rc1.0","2.0.2-rc1","2.0.2","2.0.3","2.1.0","2.1.1","2.1.2","2.1.3","3.0.0-alpha.1","3.0.0-alpha.2","3.0.0-alpha.3","3.0.0-alpha.4","3.0.0-alpha.5","3.0.0-alpha.6","3.0.0-beta.0","3.0.0-beta.1","3.0.0-beta.2","3.0.0","3.0.1","3.1.0","3.2.0","3.3.0","3.3.1","3.4.1","3.5.0","3.6.1","3.6.2","3.6.3","4.0.0-alpha.0","4.0.0-beta.0","4.0.0-beta.1","4.0.0-beta.2","4.0.0-rc.0","4.0.0-rc.1","4.0.0-rc.2","4.0.0-rc.3","4.0.0-rc.4","4.0.0","4.1.0","4.1.1","4.2.0","4.3.0","4.3.1","5.0.0-alpha.0","5.0.0-alpha.1","5.0.0-alpha.2","5.0.0-beta.0","5.0.0-beta.1","5.0.0-rc.0","5.0.0-rc.1","5.0.0-rc.2","5.0.0-rc.3","5.0.0","5.1.0","5.1.1","5.1.2","5.1.3","5.1.4","6.0.0-alpha.0","6.0.0-alpha.1","6.0.0-alpha.2","6.0.0-alpha.3","6.0.0-rc.0","6.0.0","6.0.2","6.1.0","6.1.1","6.1.2","6.1.5","6.2.0-alpha.0","6.2.0-alpha.1","6.2.0-alpha.2","6.2.0","6.2.1","6.2.2","6.2.3","6.2.4","6.3.0","6.4.0","6.4.1","6.4.2","6.5.0","6.5.1","6.5.2","6.5.3","6.5.4","6.6.0","6.6.1","7.0.0","7.1.0","7.3.0","7.4.0"],"vulnerableVersions":["5.0.0-alpha.0","5.0.0-alpha.1","5.0.0-alpha.2","5.0.0-beta.0","5.0.0-beta.1","5.0.0-rc.0","5.0.0-rc.1","5.0.0-rc.2","5.0.0-rc.3","5.0.0","5.1.0","5.1.1","5.1.2","5.1.3","5.1.4","6.0.0-alpha.0","6.0.0-alpha.1","6.0.0-alpha.2","6.0.0-alpha.3","6.0.0-rc.0","6.0.0","6.0.2","6.1.0","6.1.1","6.1.2","6.1.5","6.2.0-alpha.0","6.2.0-alpha.1","6.2.0-alpha.2","6.2.0","6.2.1","6.2.2","6.2.3","6.2.4","6.3.0","6.4.0","6.4.1","6.4.2","6.5.0","6.5.1","6.5.2","6.5.3","6.5.4","6.6.0","6.6.1","7.0.0"],"cwe":["CWE-96"],"cvss":{"score":8.1,"vectorString":"CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H"},"range":"5.0.0-alpha.0 - 7.0.0","id":"eFNtzbT6LH+aVgtnHJMFXlU4W60PHAG/b+J5+HV+6YNoVmhqHF0XS+m8/aomiliuXln/fmKdxokfjndU4WeviQ=="}

View File

@@ -0,0 +1 @@
{"source":1113274,"name":"axios","dependency":"axios","title":"Axios is Vulnerable to Denial of Service via __proto__ Key in mergeConfig","url":"https://github.com/advisories/GHSA-43fc-jf86-j433","severity":"high","versions":["0.1.0","0.2.0","0.2.1","0.2.2","0.3.0","0.3.1","0.4.0","0.4.1","0.4.2","0.5.0","0.5.1","0.5.2","0.5.3","0.5.4","0.6.0","0.7.0","0.8.0","0.8.1","0.9.0","0.9.1","0.10.0","0.11.0","0.11.1","0.12.0","0.13.0","0.13.1","0.14.0","0.15.0","0.15.1","0.15.2","0.15.3","0.16.0","0.16.1","0.16.2","0.17.0","0.17.1","0.18.0","0.18.1","0.19.0-beta.1","0.19.0","0.19.1","0.19.2","0.20.0-0","0.20.0","0.21.0","0.21.1","0.21.2","0.21.3","0.21.4","0.22.0","0.23.0","0.24.0","0.25.0","0.26.0","0.26.1","0.27.0","0.27.1","0.27.2","0.28.0","0.28.1","0.29.0","0.30.0","0.30.1","0.30.2","0.30.3","1.0.0-alpha.1","1.0.0","1.1.0","1.1.1","1.1.2","1.1.3","1.2.0-alpha.1","1.2.0","1.2.1","1.2.2","1.2.3","1.2.4","1.2.5","1.2.6","1.3.0","1.3.1","1.3.2","1.3.3","1.3.4","1.3.5","1.3.6","1.4.0","1.5.0","1.5.1","1.6.0","1.6.1","1.6.2","1.6.3","1.6.4","1.6.5","1.6.6","1.6.7","1.6.8","1.7.0-beta.0","1.7.0-beta.1","1.7.0-beta.2","1.7.0","1.7.1","1.7.2","1.7.3","1.7.4","1.7.5","1.7.6","1.7.7","1.7.8","1.7.9","1.8.0","1.8.1","1.8.2","1.8.3","1.8.4","1.9.0","1.10.0","1.11.0","1.12.0","1.12.1","1.12.2","1.13.0","1.13.1","1.13.2","1.13.3","1.13.4","1.13.5","1.13.6","1.14.0","1.15.0"],"vulnerableVersions":["0.1.0","0.2.0","0.2.1","0.2.2","0.3.0","0.3.1","0.4.0","0.4.1","0.4.2","0.5.0","0.5.1","0.5.2","0.5.3","0.5.4","0.6.0","0.7.0","0.8.0","0.8.1","0.9.0","0.9.1","0.10.0","0.11.0","0.11.1","0.12.0","0.13.0","0.13.1","0.14.0","0.15.0","0.15.1","0.15.2","0.15.3","0.16.0","0.16.1","0.16.2","0.17.0","0.17.1","0.18.0","0.18.1","0.19.0-beta.1","0.19.0","0.19.1","0.19.2","0.20.0-0","0.20.0","0.21.0","0.21.1","0.21.2","0.21.3","0.21.4","0.22.0","0.23.0","0.24.0","0.25.0","0.26.0","0.26.1","0.27.0","0.27.1","0.27.2","0.28.0","0.28.1","0.29.0","0.30.0","0.30.1","0.30.2"],"cwe":["CWE-754"],"cvss":{"score":7.5,"vectorString":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H"},"range":"<=0.30.2","id":"k68l1m/x4uE75IxsyHnCSC9O/DKUl2GFQMaprZ5FkXhB3IsJbazttvsV0bzqFZK4QFoaxJHDXajqpN+StSYvug=="}

View File

@@ -0,0 +1 @@
{"source":"a26GZag+KyrVZ3LK2nTzSerB+g1AaEomAsJszgvXFqBM53J4So8R4i3ZSxSoEeT2dRU8bZxEWnWHL4FyRZBZDQ==","name":"workbox-build","dependency":"rollup-plugin-terser","title":"Depends on vulnerable versions of rollup-plugin-terser","url":null,"severity":"high","versions":["0.0.1","0.0.2","0.0.3","1.0.0","1.0.1","1.1.0","1.2.0","1.3.0","2.0.0","2.0.1","2.0.2-2.0.2-rc1.0","2.0.2-rc1","2.0.2","2.0.3","2.1.0","2.1.1","2.1.2","2.1.3","3.0.0-alpha.1","3.0.0-alpha.2","3.0.0-alpha.3","3.0.0-alpha.4","3.0.0-alpha.5","3.0.0-alpha.6","3.0.0-beta.0","3.0.0-beta.1","3.0.0-beta.2","3.0.0","3.0.1","3.1.0","3.2.0","3.3.0","3.3.1","3.4.1","3.5.0","3.6.1","3.6.2","3.6.3","4.0.0-alpha.0","4.0.0-beta.0","4.0.0-beta.1","4.0.0-beta.2","4.0.0-rc.0","4.0.0-rc.1","4.0.0-rc.2","4.0.0-rc.3","4.0.0-rc.4","4.0.0","4.1.0","4.1.1","4.2.0","4.3.0","4.3.1","5.0.0-alpha.0","5.0.0-alpha.1","5.0.0-alpha.2","5.0.0-beta.0","5.0.0-beta.1","5.0.0-rc.0","5.0.0-rc.1","5.0.0-rc.2","5.0.0","5.1.0","5.1.1","5.1.2","5.1.3","5.1.4","6.0.0-alpha.0","6.0.0-alpha.1","6.0.0-alpha.2","6.0.0-alpha.3","6.0.0-rc.0","6.0.0","6.0.2","6.1.0","6.1.1","6.1.2","6.1.5","6.2.0-alpha.0","6.2.0-alpha.1","6.2.0-alpha.2","6.2.0","6.2.1","6.2.2","6.2.3","6.2.4","6.3.0","6.4.0","6.4.1","6.4.2","6.5.0","6.5.1","6.5.2","6.5.3","6.5.4","6.6.0","6.6.1","7.0.0","7.1.0","7.1.1","7.3.0","7.4.0"],"vulnerableVersions":["5.0.0-alpha.0","5.0.0-alpha.1","5.0.0-alpha.2","5.0.0-beta.0","5.0.0-beta.1","5.0.0-rc.0","5.0.0-rc.1","5.0.0-rc.2","5.0.0","5.1.0","5.1.1","5.1.2","5.1.3","5.1.4","6.0.0-alpha.0","6.0.0-alpha.1","6.0.0-alpha.2","6.0.0-alpha.3","6.0.0-rc.0","6.0.0","6.0.2","6.1.0","6.1.1","6.1.2","6.1.5","6.2.0-alpha.0","6.2.0-alpha.1","6.2.0-alpha.2","6.2.0","6.2.1","6.2.2","6.2.3","6.2.4","6.3.0","6.4.0","6.4.1","6.4.2","6.5.0","6.5.1","6.5.2","6.5.3","6.5.4","6.6.0","6.6.1","7.0.0"],"cwe":["CWE-96"],"cvss":{"score":8.1,"vectorString":"CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H"},"range":"5.0.0-alpha.0 - 7.0.0","id":"w4jSu3agPpZzMQ4NleZi30m2ZrpuzGOgLlw9lbt9lsWmhEmrxMpqTlQ58s2SBPZax1B0Gdul+SbJjxcBrB4M1A=="}

View File

@@ -0,0 +1 @@
{"source":1113686,"name":"serialize-javascript","dependency":"serialize-javascript","title":"Serialize JavaScript is Vulnerable to RCE via RegExp.flags and Date.prototype.toISOString()","url":"https://github.com/advisories/GHSA-5c6j-r48x-rmvq","severity":"high","versions":["1.0.0","1.1.2","1.2.0","1.3.0","1.4.0","1.5.0","1.6.0","1.6.1","1.7.0","1.8.0","1.9.0","1.9.1","2.0.0","2.1.0","2.1.1","2.1.2","3.0.0","3.1.0","4.0.0","5.0.0","5.0.1","6.0.0","6.0.1","6.0.2","7.0.0","7.0.1","7.0.2","7.0.3","7.0.4","7.0.5"],"vulnerableVersions":["1.0.0","1.1.2","1.2.0","1.3.0","1.4.0","1.5.0","1.6.0","1.6.1","1.7.0","1.8.0","1.9.0","1.9.1","2.0.0","2.1.0","2.1.1","2.1.2","3.0.0","3.1.0","4.0.0","5.0.0","5.0.1","6.0.0","6.0.1","6.0.2","7.0.0","7.0.1","7.0.2"],"cwe":["CWE-96"],"cvss":{"score":8.1,"vectorString":"CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H"},"range":"<=7.0.2","id":"VNhzhjSQJJPSfVWQUXMpEy6hsW23faurQllLlGbSJ7QrUHjncb9PKDTQYw8APRVBzMug+7YJc5EWXV6SYvPIiw=="}

View File

@@ -0,0 +1 @@
{"source":1116276,"name":"axios","dependency":"axios","title":"Axios HTTP/2 Session Cleanup State Corruption Vulnerability","url":"https://github.com/advisories/GHSA-qj83-cq47-w5f8","severity":"moderate","versions":["0.1.0","0.2.0","0.2.1","0.2.2","0.3.0","0.3.1","0.4.0","0.4.1","0.4.2","0.5.0","0.5.1","0.5.2","0.5.3","0.5.4","0.6.0","0.7.0","0.8.0","0.8.1","0.9.0","0.9.1","0.10.0","0.11.0","0.11.1","0.12.0","0.13.0","0.13.1","0.14.0","0.15.0","0.15.1","0.15.2","0.15.3","0.16.0","0.16.1","0.16.2","0.17.0","0.17.1","0.18.0","0.18.1","0.19.0-beta.1","0.19.0","0.19.1","0.19.2","0.20.0-0","0.20.0","0.21.0","0.21.1","0.21.2","0.21.3","0.21.4","0.22.0","0.23.0","0.24.0","0.25.0","0.26.0","0.26.1","0.27.0","0.27.1","0.27.2","0.28.0","0.28.1","0.29.0","0.30.0","0.30.1","0.30.2","0.30.3","1.0.0-alpha.1","1.0.0","1.1.0","1.1.1","1.1.2","1.1.3","1.2.0-alpha.1","1.2.0","1.2.1","1.2.2","1.2.3","1.2.4","1.2.5","1.2.6","1.3.0","1.3.1","1.3.2","1.3.3","1.3.4","1.3.5","1.3.6","1.4.0","1.5.0","1.5.1","1.6.0","1.6.1","1.6.2","1.6.3","1.6.4","1.6.5","1.6.6","1.6.7","1.6.8","1.7.0-beta.0","1.7.0-beta.1","1.7.0-beta.2","1.7.0","1.7.1","1.7.2","1.7.3","1.7.4","1.7.5","1.7.6","1.7.7","1.7.8","1.7.9","1.8.0","1.8.1","1.8.2","1.8.3","1.8.4","1.9.0","1.10.0","1.11.0","1.12.0","1.12.1","1.12.2","1.13.0","1.13.1","1.13.2","1.13.3","1.13.4","1.13.5","1.13.6","1.14.0","1.15.0"],"vulnerableVersions":["0.1.0","0.2.0","0.2.1","0.2.2","0.3.0","0.3.1","0.4.0","0.4.1","0.4.2","0.5.0","0.5.1","0.5.2","0.5.3","0.5.4","0.6.0","0.7.0","0.8.0","0.8.1","0.9.0","0.9.1","0.10.0","0.11.0","0.11.1","0.12.0","0.13.0","0.13.1","0.14.0","0.15.0","0.15.1","0.15.2","0.15.3","0.16.0","0.16.1","0.16.2","0.17.0","0.17.1","0.18.0","0.18.1","0.19.0-beta.1","0.19.0","0.19.1","0.19.2","0.20.0-0","0.20.0","0.21.0","0.21.1","0.21.2","0.21.3","0.21.4","0.22.0","0.23.0","0.24.0","0.25.0","0.26.0","0.26.1","0.27.0","0.27.1","0.27.2","0.28.0","0.28.1","0.29.0","0.30.0","0.30.1","0.30.2","0.30.3","1.0.0-alpha.1","1.0.0","1.1.0","1.1.1","1.1.2","1.1.3","1.2.0-alpha.1","1.2.0","1.2.1","1.2.2","1.2.3","1.2.4","1.2.5","1.2.6","1.3.0","1.3.1","1.3.2","1.3.3","1.3.4","1.3.5","1.3.6","1.4.0","1.5.0","1.5.1","1.6.0","1.6.1","1.6.2","1.6.3","1.6.4","1.6.5","1.6.6","1.6.7","1.6.8","1.7.0-beta.0","1.7.0-beta.1","1.7.0-beta.2","1.7.0","1.7.1","1.7.2","1.7.3","1.7.4","1.7.5","1.7.6","1.7.7","1.7.8","1.7.9","1.8.0","1.8.1","1.8.2","1.8.3","1.8.4","1.9.0","1.10.0","1.11.0","1.12.0","1.12.1","1.12.2","1.13.0","1.13.1"],"cwe":["CWE-400"],"cvss":{"score":5.9,"vectorString":"CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:H"},"range":"<1.13.2","id":"s5v/LfNt1YAbdlX9N9qiBKWUZHLwzEIg0oToB3hQQEpi140kW6Z8cS9rGrpEusLkVeYIGwdmM5Ii5lJ8TlMzYg=="}

View File

@@ -0,0 +1 @@
{"source":"VNhzhjSQJJPSfVWQUXMpEy6hsW23faurQllLlGbSJ7QrUHjncb9PKDTQYw8APRVBzMug+7YJc5EWXV6SYvPIiw==","name":"rollup-plugin-terser","dependency":"serialize-javascript","title":"Depends on vulnerable versions of serialize-javascript","url":null,"severity":"high","versions":["1.0.0","1.0.1","2.0.0","2.0.1","2.0.2","3.0.0","4.0.0","4.0.1","4.0.2","4.0.3","4.0.4","5.0.0","5.1.0","5.1.1","5.1.2","5.1.3","5.2.0","5.3.0","5.3.1","6.0.0","6.0.1","6.1.0","7.0.0","7.0.1","7.0.2"],"vulnerableVersions":["3.0.0","4.0.4","5.0.0","5.1.0","5.1.1","5.1.2","5.1.3","5.2.0","5.3.0","5.3.1","6.0.0","6.0.1","6.1.0","7.0.0","7.0.1","7.0.2"],"cwe":["CWE-96"],"cvss":{"score":8.1,"vectorString":"CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H"},"range":"3.0.0 || >=4.0.4","id":"a26GZag+KyrVZ3LK2nTzSerB+g1AaEomAsJszgvXFqBM53J4So8R4i3ZSxSoEeT2dRU8bZxEWnWHL4FyRZBZDQ=="}

Some files were not shown because too many files have changed in this diff Show More