Skip to content

Commit d4f5041

Browse files
iglosiggioiglosiggio
authored
chore: Migrate audit IDs to GHSA IDs (they are more stable) (#324)
1 parent a24191e commit d4f5041

File tree

2 files changed

+10
-10
lines changed

2 files changed

+10
-10
lines changed

.nsprc

Lines changed: 6 additions & 6 deletions
Original file line numberDiff line numberDiff line change
@@ -1,17 +1,17 @@
11
{
2-
"1112659": {
2+
"GHSA-34x7-hfp2-rc4v": {
33
"active": true,
4-
"notes": "GHSA-34x7-hfp2-rc4v: Hardlink path traversal in node-tar. Transitive dependency through npm itself. Requires untrusted tar extraction to exploit. Acceptable risk for development tooling.",
4+
"notes": "Hardlink path traversal in node-tar. Transitive dependency through npm itself. Requires untrusted tar extraction to exploit. Acceptable risk for development tooling.",
55
"expiry": "2026-12-31"
66
},
7-
"1112862": {
7+
"GHSA-7h2j-956f-4vf2": {
88
"active": true,
9-
"notes": "GHSA-7h2j-956f-4vf2: Exponential memory consumption. Transitive dependency through npm/eslint/vitest/minimatch. Will at most result in a crash.",
9+
"notes": "Exponential memory consumption. Transitive dependency through npm/eslint/vitest/minimatch. Will at most result in a crash.",
1010
"expiry": "2026-04-01"
1111
},
12-
"1112810": {
12+
"GHSA-3966-f6p6-2qr9": {
1313
"active": true,
14-
"notes": "GHSA-3966-f6p6-2qr9: npm cli Uncontrolled Search Path Element Local Privilege Escalation Vulnerability. Transitive dependency through the npm cli. Exploitable only by a local attacker who already has the ability to execute low-privileged code on the system. Acceptable risk for development tooling.",
14+
"notes": "npm cli Uncontrolled Search Path Element Local Privilege Escalation Vulnerability. Transitive dependency through the npm cli. Exploitable only by a local attacker who already has the ability to execute low-privileged code on the system. Acceptable risk for development tooling.",
1515
"expiry": "2026-12-31"
1616
}
1717
}

packages/algo-ts/.nsprc

Lines changed: 4 additions & 4 deletions
Original file line numberDiff line numberDiff line change
@@ -1,12 +1,12 @@
11
{
2-
"1112862": {
2+
"GHSA-7h2j-956f-4vf2": {
33
"active": true,
4-
"notes": "GHSA-7h2j-956f-4vf2: Exponential memory consumption. Transitive dependency through npm/eslint/vitest/minimatch. Will at most result in a crash.",
4+
"notes": "Exponential memory consumption. Transitive dependency through npm/eslint/vitest/minimatch. Will at most result in a crash.",
55
"expiry": "2026-04-01"
66
},
7-
"1112810": {
7+
"GHSA-3966-f6p6-2qr9": {
88
"active": true,
9-
"notes": "GHSA-3966-f6p6-2qr9: npm cli Uncontrolled Search Path Element Local Privilege Escalation Vulnerability. Transitive dependency through the npm cli. Exploitable only by a local attacker who already has the ability to execute low-privileged code on the system. Acceptable risk for development tooling.",
9+
"notes": "npm cli Uncontrolled Search Path Element Local Privilege Escalation Vulnerability. Transitive dependency through the npm cli. Exploitable only by a local attacker who already has the ability to execute low-privileged code on the system. Acceptable risk for development tooling.",
1010
"expiry": "2026-12-31"
1111
}
1212
}

0 commit comments

Comments
 (0)