Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

Update dependency express-jwt to v8 - autoclosed #21

Closed
wants to merge 1 commit into from
Closed

Update dependency express-jwt to v8 - autoclosed #21

wants to merge 1 commit into from

Conversation

mend-for-github-com[bot]
Copy link

This PR contains the following updates:

Package Type Update Change
express-jwt dependencies major 0.1.3 -> 8.0.0

By merging this PR, the below vulnerabilities will be automatically resolved:

Severity CVSS Score CVE
Critical Critical 9.8 CVE-2015-9235
Critical Critical 9.1 CVE-2020-15084
High High 8.1 CVE-2022-23539
High High 7.6 CVE-2022-23540
High High 7.5 CVE-2017-18214
High High 7.5 CVE-2022-24785
Medium Medium 6.5 CVE-2016-4055
Medium Medium 6.3 CVE-2022-23541
Medium Medium 5.3 WS-2016-0075
Medium Medium 4.6 CVE-2016-1000223

Release Notes

auth0/express-jwt (express-jwt)

v8.0.0

Compare Source

v7.7.7

Compare Source

v7.7.6

Compare Source

v7.7.5

Compare Source

v7.7.4

Compare Source

v7.7.3

Compare Source

v7.7.2

Compare Source

v7.7.1

Compare Source

v7.7.0

Compare Source

v7.6.2

Compare Source

v7.6.1

Compare Source

v7.6.0

Compare Source

v7.5.2

Compare Source

v7.5.1

Compare Source

v7.5.0

Compare Source

v7.4.3

Compare Source

v7.4.2

Compare Source

v7.4.1

Compare Source

v7.4.0

Compare Source

v7.3.0

Compare Source

v7.2.0

Compare Source

v7.1.0

Compare Source

v7.0.0

Compare Source

v6.1.2

Compare Source

v6.1.1

Compare Source

v6.1.0

Compare Source

v6.0.0

Compare Source

v5.3.3

Compare Source

v5.3.2

Compare Source

v5.3.1

Compare Source

v5.3.0

Compare Source

v5.1.0

Compare Source

v5.0.0

Compare Source

v3.4.0

Compare Source

v3.3.0

Compare Source

v3.2.0

Compare Source

v3.1.0

Compare Source

v3.0.1

Compare Source

v3.0.0

Compare Source

v2.1.0

Compare Source

v2.0.1

Compare Source

v2.0.0

Compare Source

v1.4.0

Compare Source

v1.3.1

Compare Source

v1.3.0

Compare Source

v1.2.0

Compare Source

v1.1.0

Compare Source

v1.0.0

Compare Source

v0.6.2

Compare Source

v0.5.0

Compare Source

v0.4.0

Compare Source

v0.3.2

Compare Source

v0.3.1

Compare Source

  • If you want to rebase/retry this PR, check this box

@mend-for-github-com mend-for-github-com bot added the security fix Security fix generated by Mend label May 22, 2024
@rafikmojr
Copy link

Logo
Checkmarx One – Scan Summary & Detailsc0b9e692-0642-445e-91f0-c0dcaf536f37

Fixed Issues

Severity Issue Source File / Package
HIGH CVE-2017-18214 Npm-moment-2.0.0
HIGH CVE-2020-15084 Npm-express-jwt-0.1.3
HIGH CVE-2022-24785 Npm-moment-2.0.0
MEDIUM CVE-2016-4055 Npm-moment-2.0.0
MEDIUM Cx5c009a1a-2054 Npm-moment-2.0.0

@mend-for-github-com mend-for-github-com bot changed the title Update dependency express-jwt to v8 Update dependency express-jwt to v8 - autoclosed Jun 25, 2024
@mend-for-github-com mend-for-github-com bot deleted the whitesource-remediate/express-jwt-8.x branch June 25, 2024 06:35
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Reviewers
No reviews
Assignees
No one assigned
Labels
security fix Security fix generated by Mend
Projects
None yet
Milestone
No milestone
Development

Successfully merging this pull request may close these issues.
1 participant
@rafikmojr