Skip to content
Image

chore(deps): bump webpack-dev-middleware from 5.3.3 to 5.3.4 #458

Sign in to view logs

chore(deps): bump webpack-dev-middleware from 5.3.3 to 5.3.4

chore(deps): bump webpack-dev-middleware from 5.3.3 to 5.3.4 #458

Triggered via pull request March 21, 2024 19:51
@dependabotdependabot[bot]
opened #231
dependabot/npm_and_yarn/webpack-dev-middleware-5.3.4
Status Success
Total duration 3m 34s
Artifacts

image.yml

on: pull_request
Build
3m 25s
Build
Scan
21s
Scan
Fit to window
Zoom out
Zoom in

Annotations

3 errors and 3 warnings
Scan
CVE-2023-52425 - HIGH severity - expat: parsing large tokens can trigger a denial of service vulnerability in libexpat
Scan
CVE-2024-28757 - HIGH severity - expat: XML Entity Expansion vulnerability in libexpat
Scan
CVE-2024-25062 - HIGH severity - libxml2: use-after-free in XMLReader vulnerability in libxml2
Scan
The `set-output` command is deprecated and will be disabled soon. Please upgrade to using Environment Files. For more information see: https://github.blog/changelog/2022-10-11-github-actions-deprecating-save-state-and-set-output-commands/
Scan
CVE-2023-52426 - MEDIUM severity - expat: recursive XML entity expansion vulnerability vulnerability in libexpat
Build
The `set-output` command is deprecated and will be disabled soon. Please upgrade to using Environment Files. For more information see: https://github.blog/changelog/2022-10-11-github-actions-deprecating-save-state-and-set-output-commands/