-
Notifications
You must be signed in to change notification settings - Fork 280
New issue
Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.
By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.
Already on GitHub? Sign in to your account
renovate/37.421.0 package update #22887
Conversation
octo-sts
bot
commented
Jun 29, 2024
Signed-off-by: wolfi-bot <[email protected]>
Package renovate: Click to expand/collapsePackage renovate:
Added: /usr/local/lib/node_modules/renovate/node_modules/gaxios/node_modules/uuid/CHANGELOG.md bincapz found differences: Click to expand/collapseDeleted: renovate/usr/local/lib/node_modules/renovate/node_modules/import-in-the-middle/test/other/executable [✅ LOW]
Deleted: renovate/usr/local/lib/node_modules/renovate/node_modules/import-in-the-middle/test/other/import-executable.mjs [
|
RISK | KEY | DESCRIPTION | EVIDENCE |
---|---|---|---|
-MEDIUM | kernel/platform | get system identification | process.versions |
-MEDIUM | ref/path/relative | references and possibly executes relative path | ./executable |
-LOW | ref/site/url | contains embedded HTTPS URLs | https://www.datadoghq.com/ |
Added: renovate/usr/local/lib/node_modules/renovate/node_modules/gaxios/node_modules/uuid/dist/esm-browser/version.js [⚠️ MEDIUM]
RISK | KEY | DESCRIPTION | EVIDENCE |
---|---|---|---|
+MEDIUM | ref/path/relative | references and possibly executes relative path | ./validate |
Added: renovate/usr/local/lib/node_modules/renovate/node_modules/gaxios/node_modules/uuid/dist/commonjs-browser/v4.js [⚠️ MEDIUM]
RISK | KEY | DESCRIPTION | EVIDENCE |
---|---|---|---|
+MEDIUM | ref/path/relative | references and possibly executes relative path | ./native ./rng ./stringify |
Added: renovate/usr/local/lib/node_modules/renovate/node_modules/gaxios/node_modules/uuid/dist/esm-node/v6.js [⚠️ MEDIUM]
RISK | KEY | DESCRIPTION | EVIDENCE |
---|---|---|---|
+MEDIUM | ref/path/relative | references and possibly executes relative path | ./stringify |
Added: renovate/usr/local/lib/node_modules/renovate/node_modules/gaxios/node_modules/uuid/dist/md5-browser.js [⚠️ MEDIUM]
RISK | KEY | DESCRIPTION | EVIDENCE |
---|---|---|---|
+MEDIUM | evasion/bitwise_math | uses bitwise math in both directions | 9 << 4 i >> 5 len >> 5 lsw >> 16 msw << 16 x >> 16 y >> 16 |
+LOW | ref/site/url | contains embedded HTTPS URLs | https://blueimp.net https://github.com/blueimp/JavaScript-MD5 https://opensource.org/licenses/MIT |
Added: renovate/usr/local/lib/node_modules/renovate/node_modules/gaxios/node_modules/uuid/dist/bin/uuid [✅ LOW]
RISK | KEY | DESCRIPTION | EVIDENCE |
---|---|---|---|
+LOW | ref/path/usr/bin | path reference within /usr/bin | /usr/bin/env |
Added: renovate/usr/local/lib/node_modules/renovate/node_modules/gaxios/node_modules/uuid/dist/stringify.js [⚠️ MEDIUM]
RISK | KEY | DESCRIPTION | EVIDENCE |
---|---|---|---|
+MEDIUM | ref/path/relative | references and possibly executes relative path | ./validate |
+LOW | ref/site/url | contains embedded HTTPS URLs | uuidjs/uuid#434 uuidjs/uuid#677 |
Added: renovate/usr/local/lib/node_modules/renovate/node_modules/gaxios/node_modules/uuid/dist/commonjs-browser/validate.js [⚠️ MEDIUM]
RISK | KEY | DESCRIPTION | EVIDENCE |
---|---|---|---|
+MEDIUM | ref/path/relative | references and possibly executes relative path | ./regex |
Added: renovate/usr/local/lib/node_modules/renovate/node_modules/gaxios/node_modules/uuid/dist/validate.js [⚠️ MEDIUM]
RISK | KEY | DESCRIPTION | EVIDENCE |
---|---|---|---|
+MEDIUM | ref/path/relative | references and possibly executes relative path | ./regex |
Added: renovate/usr/local/lib/node_modules/renovate/node_modules/gaxios/node_modules/uuid/dist/esm-browser/v4.js [⚠️ MEDIUM]
RISK | KEY | DESCRIPTION | EVIDENCE |
---|---|---|---|
+MEDIUM | ref/path/relative | references and possibly executes relative path | ./native ./rng ./stringify |
Added: renovate/usr/local/lib/node_modules/renovate/node_modules/gaxios/node_modules/uuid/dist/parse.js [⚠️ MEDIUM]
RISK | KEY | DESCRIPTION | EVIDENCE |
---|---|---|---|
+MEDIUM | ref/path/relative | references and possibly executes relative path | ./validate |
Added: renovate/usr/local/lib/node_modules/renovate/node_modules/gaxios/node_modules/uuid/dist/v1ToV6.js [⚠️ MEDIUM]
RISK | KEY | DESCRIPTION | EVIDENCE |
---|---|---|---|
+MEDIUM | ref/path/relative | references and possibly executes relative path | ./parse ./stringify |
Added: renovate/usr/local/lib/node_modules/renovate/node_modules/gaxios/node_modules/uuid/dist/v4.js [⚠️ MEDIUM]
RISK | KEY | DESCRIPTION | EVIDENCE |
---|---|---|---|
+MEDIUM | ref/path/relative | references and possibly executes relative path | ./native ./rng ./stringify |
Added: renovate/usr/local/lib/node_modules/renovate/node_modules/gaxios/node_modules/uuid/dist/esm-browser/parse.js [⚠️ MEDIUM]
RISK | KEY | DESCRIPTION | EVIDENCE |
---|---|---|---|
+MEDIUM | ref/path/relative | references and possibly executes relative path | ./validate |
Added: renovate/usr/local/lib/node_modules/renovate/node_modules/gaxios/node_modules/uuid/dist/v1.js [⚠️ MEDIUM]
RISK | KEY | DESCRIPTION | EVIDENCE |
---|---|---|---|
+MEDIUM | ref/path/relative | references and possibly executes relative path | ./rng ./stringify |
+LOW | net/ip/multicast/send | send data to multiple nodes simultaneously | multicast |
+LOW | ref/site/url | contains embedded HTTPS URLs | https://github.com/LiosK/UUID.js https://github.com/uuidjs/uuid |
Added: renovate/usr/local/lib/node_modules/renovate/node_modules/gaxios/node_modules/uuid/dist/esm-node/validate.js [⚠️ MEDIUM]
RISK | KEY | DESCRIPTION | EVIDENCE |
---|---|---|---|
+MEDIUM | ref/path/relative | references and possibly executes relative path | ./regex |
Added: renovate/usr/local/lib/node_modules/renovate/node_modules/gaxios/node_modules/uuid/dist/v35.js [⚠️ MEDIUM]
RISK | KEY | DESCRIPTION | EVIDENCE |
---|---|---|---|
+MEDIUM | ref/path/relative | references and possibly executes relative path | ./parse ./stringify |
Added: renovate/usr/local/lib/node_modules/renovate/node_modules/gaxios/node_modules/uuid/dist/commonjs-browser/v6ToV1.js [⚠️ MEDIUM]
RISK | KEY | DESCRIPTION | EVIDENCE |
---|---|---|---|
+MEDIUM | ref/path/relative | references and possibly executes relative path | ./parse ./stringify |
Added: renovate/usr/local/lib/node_modules/renovate/node_modules/gaxios/node_modules/uuid/dist/esm-node/version.js [⚠️ MEDIUM]
RISK | KEY | DESCRIPTION | EVIDENCE |
---|---|---|---|
+MEDIUM | ref/path/relative | references and possibly executes relative path | ./validate |
Added: renovate/usr/local/lib/node_modules/renovate/node_modules/gaxios/node_modules/uuid/dist/commonjs-browser/v1.js [⚠️ MEDIUM]
RISK | KEY | DESCRIPTION | EVIDENCE |
---|---|---|---|
+MEDIUM | ref/path/relative | references and possibly executes relative path | ./rng ./stringify |
+LOW | net/ip/multicast/send | send data to multiple nodes simultaneously | multicast |
+LOW | ref/site/url | contains embedded HTTPS URLs | https://github.com/LiosK/UUID.js https://github.com/uuidjs/uuid |
Added: renovate/usr/local/lib/node_modules/renovate/node_modules/gaxios/node_modules/uuid/dist/commonjs-browser/v1ToV6.js [⚠️ MEDIUM]
RISK | KEY | DESCRIPTION | EVIDENCE |
---|---|---|---|
+MEDIUM | ref/path/relative | references and possibly executes relative path | ./parse ./stringify |
Added: renovate/usr/local/lib/node_modules/renovate/node_modules/gaxios/node_modules/uuid/dist/esm-node/v6ToV1.js [⚠️ MEDIUM]
RISK | KEY | DESCRIPTION | EVIDENCE |
---|---|---|---|
+MEDIUM | ref/path/relative | references and possibly executes relative path | ./parse ./stringify |
Added: renovate/usr/local/lib/node_modules/renovate/node_modules/gaxios/node_modules/uuid/dist/commonjs-browser/stringify.js [⚠️ MEDIUM]
RISK | KEY | DESCRIPTION | EVIDENCE |
---|---|---|---|
+MEDIUM | ref/path/relative | references and possibly executes relative path | ./validate |
+LOW | ref/site/url | contains embedded HTTPS URLs | uuidjs/uuid#434 uuidjs/uuid#677 |
Added: renovate/usr/local/lib/node_modules/renovate/node_modules/gaxios/node_modules/uuid/dist/esm-browser/sha1.js [✅ LOW]
RISK | KEY | DESCRIPTION | EVIDENCE |
---|---|---|---|
+LOW | ref/site/url | contains embedded HTTP URLs | http://www.movable-type.co.uk/scripts/sha1.html |
Added: renovate/usr/local/lib/node_modules/renovate/node_modules/gaxios/node_modules/uuid/dist/commonjs-browser/parse.js [⚠️ MEDIUM]
RISK | KEY | DESCRIPTION | EVIDENCE |
---|---|---|---|
+MEDIUM | ref/path/relative | references and possibly executes relative path | ./validate |
Added: renovate/usr/local/lib/node_modules/renovate/node_modules/gaxios/node_modules/uuid/dist/esm-node/v4.js [⚠️ MEDIUM]
RISK | KEY | DESCRIPTION | EVIDENCE |
---|---|---|---|
+MEDIUM | ref/path/relative | references and possibly executes relative path | ./native ./rng ./stringify |
Added: renovate/usr/local/lib/node_modules/renovate/node_modules/gaxios/node_modules/uuid/dist/commonjs-browser/sha1.js [✅ LOW]
RISK | KEY | DESCRIPTION | EVIDENCE |
---|---|---|---|
+LOW | ref/site/url | contains embedded HTTP URLs | http://www.movable-type.co.uk/scripts/sha1.html |
Added: renovate/usr/local/lib/node_modules/renovate/node_modules/gaxios/node_modules/uuid/dist/version.js [⚠️ MEDIUM]
RISK | KEY | DESCRIPTION | EVIDENCE |
---|---|---|---|
+MEDIUM | ref/path/relative | references and possibly executes relative path | ./validate |
Added: renovate/usr/local/lib/node_modules/renovate/node_modules/gaxios/node_modules/uuid/dist/esm-node/v1ToV6.js [⚠️ MEDIUM]
RISK | KEY | DESCRIPTION | EVIDENCE |
---|---|---|---|
+MEDIUM | ref/path/relative | references and possibly executes relative path | ./parse ./stringify |
Added: renovate/usr/local/lib/node_modules/renovate/node_modules/gaxios/node_modules/uuid/dist/esm-browser/md5.js [⚠️ MEDIUM]
RISK | KEY | DESCRIPTION | EVIDENCE |
---|---|---|---|
+MEDIUM | evasion/bitwise_math | uses bitwise math in both directions | 9 << 4 i >> 5 len >> 5 lsw >> 16 msw << 16 x >> 16 y >> 16 |
+LOW | ref/site/url | contains embedded HTTPS URLs | https://blueimp.net https://github.com/blueimp/JavaScript-MD5 https://opensource.org/licenses/MIT |
Added: renovate/usr/local/lib/node_modules/renovate/node_modules/gaxios/node_modules/uuid/dist/esm-node/v7.js [⚠️ MEDIUM]
RISK | KEY | DESCRIPTION | EVIDENCE |
---|---|---|---|
+MEDIUM | ref/path/relative | references and possibly executes relative path | ./rng ./stringify |
+LOW | evasion/bitwise_math | uses bitwise math | igh << 8 ow << 3 ow << 5 ow << 8 |
+LOW | random/insecure | generate random numbers insecurely | rand |
+LOW | ref/site/url | contains embedded HTTPS URLs | https://www.rfc-editor.org/rfc/rfc9562.html |
Added: renovate/usr/local/lib/node_modules/renovate/node_modules/gaxios/node_modules/uuid/dist/esm-browser/v35.js [⚠️ MEDIUM]
RISK | KEY | DESCRIPTION | EVIDENCE |
---|---|---|---|
+MEDIUM | ref/path/relative | references and possibly executes relative path | ./parse ./stringify |
Added: renovate/usr/local/lib/node_modules/renovate/node_modules/gaxios/node_modules/uuid/dist/esm-browser/index.js [⚠️ MEDIUM]
RISK | KEY | DESCRIPTION | EVIDENCE |
---|---|---|---|
+MEDIUM | ref/path/relative | references and possibly executes relative path | ./max ./nil ./parse ./stringify ./validate ./version |
Added: renovate/usr/local/lib/node_modules/renovate/node_modules/gaxios/node_modules/uuid/dist/rng-browser.js [✅ LOW]
RISK | KEY | DESCRIPTION | EVIDENCE |
---|---|---|---|
+LOW | ref/site/url | contains embedded HTTPS URLs | https://github.com/uuidjs/uuid |
Added: renovate/usr/local/lib/node_modules/renovate/node_modules/import-in-the-middle/test/hook/v20.10-static-import-attributes.mjs [✅ LOW]
RISK | KEY | DESCRIPTION | EVIDENCE |
---|---|---|---|
+LOW | ref/site/url | contains embedded HTTPS URLs | https://www.datadoghq.com/ |
Added: renovate/usr/local/lib/node_modules/renovate/node_modules/gaxios/node_modules/uuid/dist/commonjs-browser/md5.js [⚠️ MEDIUM]
RISK | KEY | DESCRIPTION | EVIDENCE |
---|---|---|---|
+MEDIUM | evasion/bitwise_math | uses bitwise math in both directions | 9 << 4 i >> 5 len >> 5 lsw >> 16 msw << 16 x >> 16 y >> 16 |
+LOW | ref/site/url | contains embedded HTTPS URLs | https://blueimp.net https://github.com/blueimp/JavaScript-MD5 https://opensource.org/licenses/MIT |
Added: renovate/usr/local/lib/node_modules/renovate/node_modules/gaxios/node_modules/uuid/dist/esm-browser/rng.js [✅ LOW]
RISK | KEY | DESCRIPTION | EVIDENCE |
---|---|---|---|
+LOW | ref/site/url | contains embedded HTTPS URLs | https://github.com/uuidjs/uuid |
Added: renovate/usr/local/lib/node_modules/renovate/node_modules/gaxios/node_modules/uuid/dist/v7.js [⚠️ MEDIUM]
RISK | KEY | DESCRIPTION | EVIDENCE |
---|---|---|---|
+MEDIUM | ref/path/relative | references and possibly executes relative path | ./rng ./stringify |
+LOW | evasion/bitwise_math | uses bitwise math | igh << 8 ow << 3 ow << 5 ow << 8 |
+LOW | random/insecure | generate random numbers insecurely | rand |
+LOW | ref/site/url | contains embedded HTTPS URLs | https://www.rfc-editor.org/rfc/rfc9562.html |
Added: renovate/usr/local/lib/node_modules/renovate/node_modules/gaxios/node_modules/uuid/dist/v6ToV1.js [⚠️ MEDIUM]
RISK | KEY | DESCRIPTION | EVIDENCE |
---|---|---|---|
+MEDIUM | ref/path/relative | references and possibly executes relative path | ./parse ./stringify |
Added: renovate/usr/local/lib/node_modules/renovate/node_modules/gaxios/node_modules/uuid/dist/v6.js [⚠️ MEDIUM]
RISK | KEY | DESCRIPTION | EVIDENCE |
---|---|---|---|
+MEDIUM | ref/path/relative | references and possibly executes relative path | ./stringify |
Added: renovate/usr/local/lib/node_modules/renovate/node_modules/gaxios/node_modules/uuid/dist/esm-browser/v1.js [⚠️ MEDIUM]
RISK | KEY | DESCRIPTION | EVIDENCE |
---|---|---|---|
+MEDIUM | ref/path/relative | references and possibly executes relative path | ./rng ./stringify |
+LOW | net/ip/multicast/send | send data to multiple nodes simultaneously | multicast |
+LOW | ref/site/url | contains embedded HTTPS URLs | https://github.com/LiosK/UUID.js https://github.com/uuidjs/uuid |
Added: renovate/usr/local/lib/node_modules/renovate/node_modules/gaxios/node_modules/uuid/dist/esm-browser/v1ToV6.js [⚠️ MEDIUM]
RISK | KEY | DESCRIPTION | EVIDENCE |
---|---|---|---|
+MEDIUM | ref/path/relative | references and possibly executes relative path | ./parse ./stringify |
Added: renovate/usr/local/lib/node_modules/renovate/node_modules/gaxios/node_modules/uuid/dist/esm-node/index.js [⚠️ MEDIUM]
RISK | KEY | DESCRIPTION | EVIDENCE |
---|---|---|---|
+MEDIUM | ref/path/relative | references and possibly executes relative path | ./max ./nil ./parse ./stringify ./validate ./version |
Added: renovate/usr/local/lib/node_modules/renovate/node_modules/gaxios/node_modules/uuid/dist/esm-node/parse.js [⚠️ MEDIUM]
RISK | KEY | DESCRIPTION | EVIDENCE |
---|---|---|---|
+MEDIUM | ref/path/relative | references and possibly executes relative path | ./validate |
Added: renovate/usr/local/lib/node_modules/renovate/node_modules/gaxios/node_modules/uuid/dist/esm-node/stringify.js [⚠️ MEDIUM]
RISK | KEY | DESCRIPTION | EVIDENCE |
---|---|---|---|
+MEDIUM | ref/path/relative | references and possibly executes relative path | ./validate |
+LOW | ref/site/url | contains embedded HTTPS URLs | uuidjs/uuid#434 uuidjs/uuid#677 |
Added: renovate/usr/local/lib/node_modules/renovate/node_modules/gaxios/node_modules/uuid/dist/commonjs-browser/v35.js [⚠️ MEDIUM]
RISK | KEY | DESCRIPTION | EVIDENCE |
---|---|---|---|
+MEDIUM | ref/path/relative | references and possibly executes relative path | ./parse ./stringify |
Added: renovate/usr/local/lib/node_modules/renovate/node_modules/gaxios/node_modules/uuid/dist/esm-node/v35.js [⚠️ MEDIUM]
RISK | KEY | DESCRIPTION | EVIDENCE |
---|---|---|---|
+MEDIUM | ref/path/relative | references and possibly executes relative path | ./parse ./stringify |
Added: renovate/usr/local/lib/node_modules/renovate/node_modules/gaxios/node_modules/uuid/dist/sha1-browser.js [✅ LOW]
RISK | KEY | DESCRIPTION | EVIDENCE |
---|---|---|---|
+LOW | ref/site/url | contains embedded HTTP URLs | http://www.movable-type.co.uk/scripts/sha1.html |
Added: renovate/usr/local/lib/node_modules/renovate/node_modules/gaxios/node_modules/uuid/dist/esm-browser/v6ToV1.js [⚠️ MEDIUM]
RISK | KEY | DESCRIPTION | EVIDENCE |
---|---|---|---|
+MEDIUM | ref/path/relative | references and possibly executes relative path | ./parse ./stringify |
Added: renovate/usr/local/lib/node_modules/renovate/node_modules/gaxios/node_modules/uuid/dist/commonjs-browser/index.js [⚠️ MEDIUM]
RISK | KEY | DESCRIPTION | EVIDENCE |
---|---|---|---|
+MEDIUM | ref/path/relative | references and possibly executes relative path | ./max ./nil ./parse ./stringify ./validate ./version |
Added: renovate/usr/local/lib/node_modules/renovate/node_modules/gaxios/node_modules/uuid/dist/esm-node/v1.js [⚠️ MEDIUM]
RISK | KEY | DESCRIPTION | EVIDENCE |
---|---|---|---|
+MEDIUM | ref/path/relative | references and possibly executes relative path | ./rng ./stringify |
+LOW | net/ip/multicast/send | send data to multiple nodes simultaneously | multicast |
+LOW | ref/site/url | contains embedded HTTPS URLs | https://github.com/LiosK/UUID.js https://github.com/uuidjs/uuid |
Added: renovate/usr/local/lib/node_modules/renovate/node_modules/import-in-the-middle/test/fixtures/json-attributes.mjs [⚠️ MEDIUM]
RISK | KEY | DESCRIPTION | EVIDENCE |
---|---|---|---|
+MEDIUM | ref/path/relative | references and possibly executes relative path | ./something |
Added: renovate/usr/local/lib/node_modules/renovate/node_modules/gaxios/node_modules/uuid/dist/esm-browser/v7.js [⚠️ MEDIUM]
RISK | KEY | DESCRIPTION | EVIDENCE |
---|---|---|---|
+MEDIUM | ref/path/relative | references and possibly executes relative path | ./rng ./stringify |
+LOW | evasion/bitwise_math | uses bitwise math | igh << 8 ow << 3 ow << 5 ow << 8 |
+LOW | random/insecure | generate random numbers insecurely | rand |
+LOW | ref/site/url | contains embedded HTTPS URLs | https://www.rfc-editor.org/rfc/rfc9562.html |
Added: renovate/usr/local/lib/node_modules/renovate/node_modules/gaxios/node_modules/uuid/dist/commonjs-browser/rng.js [✅ LOW]
RISK | KEY | DESCRIPTION | EVIDENCE |
---|---|---|---|
+LOW | ref/site/url | contains embedded HTTPS URLs | https://github.com/uuidjs/uuid |
Added: renovate/usr/local/lib/node_modules/renovate/node_modules/gaxios/node_modules/uuid/dist/index.js [⚠️ MEDIUM]
RISK | KEY | DESCRIPTION | EVIDENCE |
---|---|---|---|
+MEDIUM | ref/path/relative | references and possibly executes relative path | ./max ./nil ./parse ./stringify ./validate ./version |
Added: renovate/usr/local/lib/node_modules/renovate/node_modules/gaxios/node_modules/uuid/dist/commonjs-browser/v7.js [⚠️ MEDIUM]
RISK | KEY | DESCRIPTION | EVIDENCE |
---|---|---|---|
+MEDIUM | ref/path/relative | references and possibly executes relative path | ./rng ./stringify |
+LOW | evasion/bitwise_math | uses bitwise math | igh << 8 ow << 3 ow << 5 ow << 8 |
+LOW | random/insecure | generate random numbers insecurely | rand |
+LOW | ref/site/url | contains embedded HTTPS URLs | https://www.rfc-editor.org/rfc/rfc9562.html |
Added: renovate/usr/local/lib/node_modules/renovate/node_modules/gaxios/node_modules/uuid/dist/esm-browser/stringify.js [⚠️ MEDIUM]
RISK | KEY | DESCRIPTION | EVIDENCE |
---|---|---|---|
+MEDIUM | ref/path/relative | references and possibly executes relative path | ./validate |
+LOW | ref/site/url | contains embedded HTTPS URLs | uuidjs/uuid#434 uuidjs/uuid#677 |
Added: renovate/usr/local/lib/node_modules/renovate/node_modules/gaxios/node_modules/uuid/dist/commonjs-browser/version.js [⚠️ MEDIUM]
RISK | KEY | DESCRIPTION | EVIDENCE |
---|---|---|---|
+MEDIUM | ref/path/relative | references and possibly executes relative path | ./validate |
Added: renovate/usr/local/lib/node_modules/renovate/node_modules/gaxios/node_modules/uuid/dist/commonjs-browser/v6.js [⚠️ MEDIUM]
RISK | KEY | DESCRIPTION | EVIDENCE |
---|---|---|---|
+MEDIUM | ref/path/relative | references and possibly executes relative path | ./stringify |
Added: renovate/usr/local/lib/node_modules/renovate/node_modules/gaxios/node_modules/uuid/dist/esm-browser/validate.js [⚠️ MEDIUM]
RISK | KEY | DESCRIPTION | EVIDENCE |
---|---|---|---|
+MEDIUM | ref/path/relative | references and possibly executes relative path | ./regex |
Added: renovate/usr/local/lib/node_modules/renovate/node_modules/gaxios/node_modules/uuid/wrapper.mjs [⚠️ MEDIUM]
RISK | KEY | DESCRIPTION | EVIDENCE |
---|---|---|---|
+MEDIUM | ref/path/relative | references and possibly executes relative path | ./dist |
Added: renovate/usr/local/lib/node_modules/renovate/node_modules/gaxios/node_modules/uuid/dist/esm-browser/v6.js [⚠️ MEDIUM]
RISK | KEY | DESCRIPTION | EVIDENCE |
---|---|---|---|
+MEDIUM | ref/path/relative | references and possibly executes relative path | ./stringify |
Added: renovate/usr/local/lib/node_modules/renovate/node_modules/import-in-the-middle/test/fixtures/executable [✅ LOW]
RISK | KEY | DESCRIPTION | EVIDENCE |
---|---|---|---|
+LOW | ref/path/usr/bin | path reference within /usr/bin | /usr/bin/env |
+LOW | ref/site/url | contains embedded HTTPS URLs | https://www.datadoghq.com/ |
Changed: renovate/usr/local/lib/node_modules/renovate/node_modules/triplesec/lib/sha512.js
Changed: renovate/usr/local/lib/node_modules/renovate/node_modules/moment/min/locales.js
Changed: renovate/usr/local/lib/node_modules/renovate/node_modules/handlebars/dist/cjs/handlebars/compiler/code-gen.js
Changed: renovate/usr/local/lib/node_modules/renovate/node_modules/got/dist/source/core/index.js
Changed: renovate/usr/local/lib/node_modules/renovate/node_modules/handlebars/dist/amd/handlebars.runtime.js
Changed: renovate/usr/local/lib/node_modules/renovate/node_modules/handlebars/dist/amd/handlebars/compiler/code-gen.js
Changed: renovate/usr/local/lib/node_modules/renovate/node_modules/triplesec/browser/triplesec.js
Changed: renovate/usr/local/lib/node_modules/renovate/node_modules/@opentelemetry/otlp-exporter-base/build/esm/platform/node/util.js
Changed: renovate/usr/local/lib/node_modules/renovate/node_modules/@breejs/later/dist/later.js
Changed: renovate/usr/local/lib/node_modules/renovate/node_modules/@aws-sdk/client-sso-oidc/dist-types/commands/CreateTokenWithIAMCommand.d.ts
Changed: renovate/usr/local/lib/node_modules/renovate/node_modules/handlebars/dist/amd/handlebars/runtime.js
Changed: renovate/usr/local/lib/node_modules/renovate/node_modules/@types/node/https.d.ts
Changed: renovate/usr/local/lib/node_modules/renovate/node_modules/diff/lib/diff/line.js
Changed: renovate/usr/local/lib/node_modules/renovate/node_modules/js-yaml/dist/js-yaml.js
Changed: renovate/usr/local/lib/node_modules/renovate/node_modules/handlebars/dist/cjs/handlebars/compiler/visitor.js
Changed: renovate/usr/local/lib/node_modules/renovate/node_modules/diff/lib/patch/parse.js
Changed: renovate/usr/local/lib/node_modules/renovate/node_modules/@aws-crypto/sha256-js/src/RawSha256.ts
Changed: renovate/usr/local/lib/node_modules/renovate/node_modules/@yarnpkg/parsers/node_modules/js-yaml/dist/js-yaml.js
Changed: renovate/usr/local/lib/node_modules/renovate/node_modules/node-gyp/gyp/pylib/gyp/MSVSUserFile.py
Changed: renovate/usr/local/lib/node_modules/renovate/node_modules/handlebars/dist/cjs/handlebars/compiler/whitespace-control.js
Changed: renovate/usr/local/lib/node_modules/renovate/node_modules/ssri/lib/index.js
Changed: renovate/usr/local/lib/node_modules/renovate/node_modules/re2/vendor/abseil-cpp/absl/types/internal/variant.h
Changed: renovate/usr/local/lib/node_modules/renovate/node_modules/diff/lib/patch/apply.js
Changed: renovate/usr/local/lib/node_modules/renovate/node_modules/@breejs/later/lib/index.js
Changed: renovate/usr/local/lib/node_modules/renovate/node_modules/vuln-vects/dist/cvss2-enums.js
Changed: renovate/usr/local/lib/node_modules/renovate/node_modules/long/umd/index.js
Changed: renovate/usr/local/lib/node_modules/renovate/dist/modules/datasource/endoflife-date/common.d.ts
Changed: renovate/usr/local/lib/node_modules/renovate/node_modules/triplesec/lib/sha256.js
Changed: renovate/usr/local/lib/node_modules/renovate/node_modules/@aws-crypto/supports-web-crypto/build/supportsWebCrypto.js
Changed: renovate/usr/local/lib/node_modules/renovate/node_modules/handlebars/dist/amd/handlebars/compiler/whitespace-control.js
Changed: renovate/usr/local/lib/node_modules/renovate/node_modules/handlebars/dist/cjs/handlebars/decorators/inline.js
Changed: renovate/usr/local/lib/node_modules/renovate/node_modules/cron-parser/lib/expression.js
Changed: renovate/usr/local/lib/node_modules/renovate/node_modules/handlebars/dist/amd/handlebars/decorators/inline.js
Changed: renovate/usr/local/lib/node_modules/renovate/node_modules/re2/vendor/abseil-cpp/absl/time/internal/cctz/include/cctz/civil_time_detail.h
Changed: renovate/usr/local/lib/node_modules/renovate/node_modules/vuln-vects/dist/cvss3-enums.d.ts
Changed: renovate/usr/local/lib/node_modules/renovate/node_modules/handlebars/dist/cjs/handlebars/compiler/javascript-compiler.js
Changed: renovate/usr/local/lib/node_modules/renovate/node_modules/triplesec/lib/twofish.js
Changed: renovate/usr/local/lib/node_modules/renovate/node_modules/diff/lib/patch/create.js
Changed: renovate/usr/local/lib/node_modules/renovate/node_modules/tar/lib/create.js
Changed: renovate/usr/local/lib/node_modules/renovate/node_modules/diff/lib/patch/merge.js
Changed: renovate/usr/local/lib/node_modules/renovate/node_modules/triplesec/lib/scrypt.js
Changed: renovate/usr/local/lib/node_modules/renovate/node_modules/@cdktf/hcl2json/lib/bridge.js
Changed: renovate/usr/local/lib/node_modules/renovate/node_modules/handlebars/dist/amd/handlebars/compiler/visitor.js
Changed: renovate/usr/local/lib/node_modules/renovate/node_modules/handlebars/dist/amd/handlebars/utils.js
Changed: renovate/usr/local/lib/node_modules/renovate/node_modules/handlebars/dist/amd/handlebars/compiler/javascript-compiler.js
Changed: renovate/usr/local/lib/node_modules/renovate/dist/modules/manager/ansible-galaxy/extract.js
Changed: renovate/usr/local/lib/node_modules/renovate/node_modules/diff/lib/diff/array.js
Changed: renovate/usr/local/lib/node_modules/renovate/node_modules/node-gyp/lib/find-python.js
Changed: renovate/usr/local/lib/node_modules/renovate/node_modules/handlebars/dist/cjs/handlebars/utils.js
Changed: renovate/usr/local/lib/node_modules/renovate/node_modules/@yarnpkg/libzip/lib/libzipSync.js
Changed: renovate/usr/local/lib/node_modules/renovate/node_modules/diff/lib/util/array.js
Changed: renovate/usr/local/lib/node_modules/renovate/node_modules/handlebars/dist/cjs/handlebars/compiler/parser.js
Changed: renovate/usr/local/lib/node_modules/renovate/node_modules/handlebars/dist/cjs/handlebars/runtime.js
Changed: renovate/usr/local/lib/node_modules/renovate/node_modules/vuln-vects/dist/cvss2-enums.d.ts
Changed: renovate/usr/local/lib/node_modules/renovate/node_modules/moment/dist/locale/ru.js
Changed: renovate/usr/local/lib/node_modules/renovate/node_modules/handlebars/dist/amd/handlebars/helpers/each.js
Changed: renovate/usr/local/lib/node_modules/renovate/node_modules/handlebars/dist/cjs/precompiler.js
Changed: renovate/usr/local/lib/node_modules/renovate/node_modules/diff/lib/diff/word.js
Changed: renovate/usr/local/lib/node_modules/renovate/node_modules/@yarnpkg/libzip/lib/libzipAsync.js
Changed: renovate/usr/local/lib/node_modules/renovate/node_modules/triplesec/ext/twofish.js
Changed: renovate/usr/local/lib/node_modules/renovate/node_modules/triplesec/lib/keccak.js
Changed: renovate/usr/local/lib/node_modules/renovate/node_modules/diff/lib/diff/base.js
Changed: renovate/usr/local/lib/node_modules/renovate/node_modules/keybase-nacl/node_modules/tweetnacl/nacl-fast.js
Changed: renovate/usr/local/lib/node_modules/renovate/node_modules/handlebars/dist/cjs/handlebars.runtime.js
Changed: renovate/usr/local/lib/node_modules/renovate/node_modules/diff/lib/patch/reverse.js
Changed: renovate/usr/local/lib/node_modules/renovate/dist/modules/manager/pipenv/extract.js
Changed: renovate/usr/local/lib/node_modules/renovate/node_modules/@cdktf/hcl2json/lib/util.js
Changed: renovate/usr/local/lib/node_modules/renovate/node_modules/prettier/index.mjs
Changed: renovate/usr/local/lib/node_modules/renovate/node_modules/diff/lib/diff/json.js
Changed: renovate/usr/local/lib/node_modules/renovate/node_modules/@opentelemetry/otlp-exporter-base/build/src/platform/node/util.js
Changed: renovate/usr/local/lib/node_modules/renovate/node_modules/handlebars/dist/handlebars.runtime.amd.js
Changed: renovate/usr/local/lib/node_modules/renovate/node_modules/handlebars/dist/cjs/handlebars/helpers/each.js
Changed: renovate/usr/local/lib/node_modules/renovate/node_modules/pgp-utils/lib/armor.js
Changed: renovate/usr/local/lib/node_modules/renovate/node_modules/diff/lib/index.js
Changed: renovate/usr/local/lib/node_modules/renovate/node_modules/handlebars/dist/cjs/handlebars/compiler/compiler.js
Changed: renovate/usr/local/lib/node_modules/renovate/node_modules/vuln-vects/src/cvss3-enums.ts
Changed: renovate/usr/local/lib/node_modules/renovate/node_modules/tweetnacl/nacl-fast.js
Changed: renovate/usr/local/lib/node_modules/renovate/node_modules/handlebars/dist/amd/handlebars/helpers/block-helper-missing.js
Changed: renovate/usr/local/lib/node_modules/renovate/node_modules/protobufjs/dist/minimal/protobuf.js
Changed: renovate/usr/local/lib/node_modules/renovate/node_modules/handlebars/dist/cjs/handlebars/helpers/block-helper-missing.js
Changed: renovate/usr/local/lib/node_modules/renovate/node_modules/vuln-vects/src/cvss2-enums.ts
Changed: renovate/usr/local/lib/node_modules/renovate/dist/modules/datasource/deno/index.js
Changed: renovate/usr/local/lib/node_modules/renovate/node_modules/vuln-vects/dist/cvss3-enums.js
Changed: renovate/usr/local/lib/node_modules/renovate/node_modules/moment/min/moment-with-locales.js
Changed: renovate/usr/local/lib/node_modules/renovate/node_modules/@protobufjs/float/index.js
Changed: renovate/usr/local/lib/node_modules/renovate/node_modules/handlebars/dist/amd/precompiler.js
Changed: renovate/usr/local/lib/node_modules/renovate/node_modules/@cdktf/hcl2json/lib/deepmerge.js
Changed: renovate/usr/local/lib/node_modules/renovate/node_modules/triplesec/lib/salsa20.js
Changed: renovate/usr/local/lib/node_modules/renovate/node_modules/source-map/dist/source-map.debug.js
Changed: renovate/usr/local/lib/node_modules/renovate/node_modules/@renovatebot/kbpgp/lib/keybase/hilev.js
Changed: renovate/usr/local/lib/node_modules/renovate/node_modules/@opentelemetry/otlp-exporter-base/build/esnext/platform/node/util.js
Changed: renovate/usr/local/lib/node_modules/renovate/node_modules/handlebars/dist/amd/handlebars/helpers/if.js
Changed: renovate/usr/local/lib/node_modules/renovate/node_modules/handlebars/dist/amd/handlebars/compiler/parser.js
Changed: renovate/usr/local/lib/node_modules/renovate/node_modules/handlebars/dist/cjs/handlebars/helpers/if.js
Changed: renovate/usr/local/lib/node_modules/renovate/node_modules/handlebars/dist/amd/handlebars/compiler/compiler.js
Changed: renovate/usr/local/lib/node_modules/renovate/node_modules/moment/src/locale/ru.js
Changed: renovate/usr/local/lib/node_modules/renovate/node_modules/moment/locale/ru.js
Changed: renovate/usr/local/lib/node_modules/renovate/node_modules/triplesec/lib/wordarray.js
Changed: renovate/usr/local/lib/node_modules/renovate/node_modules/handlebars/dist/handlebars.amd.js
Changed: renovate/usr/local/lib/node_modules/renovate/node_modules/@aws-crypto/sha256-js/build/RawSha256.js
Changed: renovate/usr/local/lib/node_modules/renovate/node_modules/@types/node/process.d.ts
Changed: renovate/usr/local/lib/node_modules/renovate/dist/modules/datasource/endoflife-date/common.js
superseded by #22898 |