issues Search Results · language:Edge language:TypeScript language:JavaScript language:JavaScript language:JavaScript
Filter by
35.3M results
Scanner: osv Category: dependency Severity: high Rule: CVE-2026-44495 File: file:///work/yarn.lock
Message
Package axios@1.10.0 is vulnerable to CVE-2026-44495 (also known as GHSA-3g43-6gmg-66jw ).
...
security
security-scan:dependency
security-scan:high
nirmalgupta
Scanner: osv Category: dependency Severity: high Rule: CVE-2026-44495 File: file:///work/yarn.lock
Message
Package axios@0.21.4 is vulnerable to CVE-2026-44495 (also known as GHSA-3g43-6gmg-66jw ).
...
security
security-scan:dependency
security-scan:high
Scanner: osv Category: dependency Severity: medium Rule: CVE-2026-2739 File: file:///work/yarn.lock
Message
Package bn.js@5.2.2 is vulnerable to CVE-2026-2739 (also known as GHSA-378v-28hj-76wf ).
!-- ...
security
security-scan:dependency
security-scan:medium
Scanner: osv Category: dependency Severity: medium Rule: CVE-2026-2739 File: file:///work/yarn.lock
Message
Package bn.js@4.12.2 is vulnerable to CVE-2026-2739 (also known as GHSA-378v-28hj-76wf ).
...
security
security-scan:dependency
security-scan:medium
Scanner: osv Category: dependency Severity: low Rule: CVE-2026-6733 File: file:///work/yarn.lock
Message
Package undici@5.29.0 is vulnerable to CVE-2026-6733 (also known as GHSA-35p6-xmwp-9g52 ).
!-- ...
security
security-scan:dependency
security-scan:low
Scanner: osv Category: dependency Severity: high Rule: CVE-2026-44494 File: file:///work/yarn.lock
Message
Package axios@1.11.0 is vulnerable to CVE-2026-44494 (also known as GHSA-35jp-ww65-95wh ).
...
security
security-scan:dependency
security-scan:high
Scanner: osv Category: dependency Severity: high Rule: CVE-2026-44494 File: file:///work/yarn.lock
Message
Package axios@1.10.0 is vulnerable to CVE-2026-44494 (also known as GHSA-35jp-ww65-95wh ).
...
security
security-scan:dependency
security-scan:high
Scanner: osv Category: dependency Severity: high Rule: CVE-2026-24842 File: file:///work/yarn.lock
Message
Package tar@7.4.3 is vulnerable to CVE-2026-24842 (also known as GHSA-34x7-hfp2-rc4v ).
!-- ...
security
security-scan:dependency
security-scan:high
Problem (the recurring structural debt)
The project key is title-derived: effectiveProjectId = planningSessionKey || activeProjectId || planningTitle ||
planningPitch (Planning.tsx), and planningSessionKey ...
enhancement
javascript
rust
kevinthelago
Scanner: osv Category: dependency Severity: high Rule: CVE-2026-24842 File: file:///work/yarn.lock
Message
Package tar@6.2.1 is vulnerable to CVE-2026-24842 (also known as GHSA-34x7-hfp2-rc4v ).
!-- ...
security
security-scan:dependency
security-scan:high
Learn how you can use GitHub Issues to plan and track your work.
Save views for sprints, backlogs, teams, or releases. Rank, sort, and filter issues to suit the occasion. The possibilities are endless.Learn more about GitHub IssuesProTip! Restrict your search to the title by using the in:title qualifier.
Learn how you can use GitHub Issues to plan and track your work.
Save views for sprints, backlogs, teams, or releases. Rank, sort, and filter issues to suit the occasion. The possibilities are endless.Learn more about GitHub IssuesProTip! Restrict your search to the title by using the in:title qualifier.