Skip to content

Moderate vulnerability, needs bumping vite #237

New issue
New issue
Open
Open
Moderate vulnerability, needs bumping vite#237
Assignees
theoephraim
Labels
enhancementNew feature or request
@darigarm

Description

@darigarm
darigarm
opened on Nov 12, 2025

Description

There is a moderate vulnerability issue on the version "dmno": "^0.0.39". Please bump vite package

$ pnpm audit      
┌─────────────────────┬────────────────────────────────────────────────────────┐
│ moderate            │ vite allows server.fs.deny bypass via backslash on     │
│                     │ Windows                                                │
├─────────────────────┼────────────────────────────────────────────────────────┤
│ Package             │ vite                                                   │
├─────────────────────┼────────────────────────────────────────────────────────┤
│ Vulnerable versions │ >=5.2.6 <=5.4.20                                       │
├─────────────────────┼────────────────────────────────────────────────────────┤
│ Patched versions    │ >=5.4.21                                               │
├─────────────────────┼────────────────────────────────────────────────────────┤
│ Paths               │ .>dmno>vite                                            │
├─────────────────────┼────────────────────────────────────────────────────────┤
│ More info           │ https://github.com/advisories/GHSA-93m4-6634-74q7      │
└─────────────────────┴────────────────────────────────────────────────────────┘
1 vulnerabilities found
Severity: 1 moderate

### Motivation

_No response_

### Proposed Solution

_No response_

### Alternatives

_No response_

### Additional Information

_No response_

Metadata

Metadata

Assignees

Labels

enhancementNew feature or request

Type

No type

Projects

No projects

Milestone

No milestone

Relationships

None yet

Development

No branches or pull requests

Issue actions