Don't force skills selection on Topgear challenge edits #1706
93 new alerts including 9 critical severity security vulnerabilities
New alerts in code changed by this pull request
Security Alerts:
- 9 critical
- 42 high
- 34 medium
- 8 low
Alerts not introduced by this pull request might have been detected because the code changes were too large.
See annotations below for details.
Annotations
Check failure on line 1050 in test-automation/package-lock.json
Code scanning / Trivy
minimist: prototype pollution Critical test
Check failure on line 1045 in test-automation/package-lock.json
Code scanning / Trivy
nodejs-minimatch: ReDoS via the braceExpand function High test
Check failure on line 933 in test-automation/package-lock.json
Code scanning / Trivy
jszip: directory traversal via a crafted ZIP archive High test
Check failure on line 864 in test-automation/package-lock.json
Code scanning / Trivy
nodejs-json-schema: Prototype pollution vulnerability Critical test
Check failure on line 578 in test-automation/package-lock.json
Code scanning / Trivy
form-data: Unsafe random function in form-data Critical test
Check failure on line 333 in test-automation/package-lock.json
Code scanning / Trivy
cross-spawn: regular expression denial of service High test
Check failure on line 243 in test-automation/package-lock.json
Code scanning / Trivy
nodejs-ansi-regex: Regular expression denial of service (ReDoS) matching ANSI escape codes High test
Check failure on line 1 in pnpm-lock.yaml
Code scanning / Trivy
loader-utils: prototype pollution in function parseQuery in parseQuery.js Critical
Check failure on line 1 in pnpm-lock.yaml
Code scanning / Trivy
loader-utils: regular expression denial of service in interpolateName.js High
Check failure on line 1 in pnpm-lock.yaml
Code scanning / Trivy
loader-utils: Regular expression denial of service High
Check failure on line 1 in pnpm-lock.yaml
Code scanning / Trivy
nodejs-lodash: prototype pollution in defaultsDeep function leading to modifying properties Critical
Check failure on line 1 in pnpm-lock.yaml
Code scanning / Trivy
nodejs-lodash: prototype pollution in zipObjectDeep function High
Check failure on line 1 in pnpm-lock.yaml
Code scanning / Trivy
nodejs-lodash: command injection via template High
Check failure on line 143 in test-automation/package-lock.json
Code scanning / Trivy
async: Prototype Pollution in async High test
Check failure on line 1 in pnpm-lock.yaml
Code scanning / Trivy
Prototype Pollution in merge High
Check failure on line 1 in pnpm-lock.yaml
Code scanning / Trivy
nodejs-minimatch: ReDoS via the braceExpand function High
Check failure on line 1 in pnpm-lock.yaml
Code scanning / Trivy
node-fetch: exposure of sensitive information to an unauthorized actor High
Check failure on line 1 in pnpm-lock.yaml
Code scanning / Trivy
node-forge: Signature verification leniency in checking `digestAlgorithm` structure can lead to signature forgery High
Check failure on line 1 in pnpm-lock.yaml
Code scanning / Trivy
node-forge: Signature verification failing to check tailing garbage bytes can lead to signature forgery High
Check failure on line 1 in pnpm-lock.yaml
Code scanning / Trivy
webpack-dev-middleware: lack of URL validation may lead to file leak High
Check failure on line 1 in pnpm-lock.yaml
Code scanning / Trivy
nodejs-trim-newlines: ReDoS in .end() method High
Check failure on line 1 in pnpm-lock.yaml
Code scanning / Trivy
nodejs-tar: Arbitrary File Creation/Overwrite on Windows via insufficient relative path sanitization High
Check failure on line 1 in pnpm-lock.yaml
Code scanning / Trivy
nodejs-nth-check: inefficient regular expression complexity High
Check failure on line 1 in pnpm-lock.yaml
Code scanning / Trivy
nodejs-tar: Insufficient absolute path sanitization allowing arbitrary file creation and overwrite High
Check failure on line 1 in pnpm-lock.yaml
Code scanning / Trivy
nodejs-semver: Regular expression denial of service High