Skip to content

Wiz: Upgrade multiple dependencies (resolves 32 findings)#66

Closed
wiz-code-21c5ec5a85[bot] wants to merge 1 commit into
mainfrom
wiz-auto-remediation-2e7fa9d10723f56e
Closed

Wiz: Upgrade multiple dependencies (resolves 32 findings)#66
wiz-code-21c5ec5a85[bot] wants to merge 1 commit into
mainfrom
wiz-auto-remediation-2e7fa9d10723f56e

Conversation

@wiz-code-21c5ec5a85

Copy link
Copy Markdown

Wiz Remediation Pull Request Banner

Wiz has created this PR to fix 32 findings detected in this project

Changes were made to the following file(s):

  • package-lock.json
  • package.json

Vulnerabilities:

Component Findings Locations
ajv
6.12.6 → 2.0.0-alpha
Low CVE-2025-69873 /package.json
bn.js
4.11.6 → 4.0.0-alpha.0
Medium CVE-2026-2739 /package.json
bn.js
4.12.2 → 4.0.0-alpha.0
Medium CVE-2026-2739 /package.json
bn.js
5.2.2 → 4.0.0-alpha.0
Medium CVE-2026-2739 /package.json
elliptic
6.6.1 → 4.0.0-alpha.0
Medium CVE-2025-14505 /package.json
form-data
2.3.3 → 2.0.0-alpha
Critical CVE-2025-7783 /package.json
min-document
2.19.0 → 4.0.0-alpha.0
Medium CVE-2025-57352 /package.json
path-to-regexp
0.1.12 → 2.0.0-alpha
High CVE-2026-4867 /package.json
qs
6.5.3 → 2.0.0-alpha
Medium CVE-2025-15284 /package.json
qs
6.13.0 → 2.0.0-alpha
Medium CVE-2025-15284
Medium CVE-2026-2391
/package.json
request
2.88.2 → 2.0.0-alpha
Medium CVE-2023-28155 /package.json
serialize-javascript
6.0.2 → 12.0.0-beta-10
High CVE-2026-34043 /package.json
tar
4.4.19 → 2.0.0-alpha
High CVE-2026-26960
High CVE-2026-31802
High CVE-2026-29786
High CVE-2026-23745
High CVE-2026-24842
Medium CVE-2024-28863
Medium CVE-2026-23950
/package.json
tough-cookie
2.5.0 → 2.0.0-alpha
Critical CVE-2023-26136 /package.json
uuid
9.0.1 → 14.0.0
High CVE-2026-41907 /package.json
web3-core-subscriptions
1.10.4 → 3.0.0-rc.1
High CVE-2025-57330 /package.json
ws
3.3.3 → 2.0.0-alpha
High CVE-2024-37890 /package.json

To detect these findings earlier in the dev lifecycle, try using Wiz Code VS Code Extension.

@wiz-code-21c5ec5a85

wiz-code-21c5ec5a85 Bot commented May 6, 2026

Copy link
Copy Markdown
Author

Wiz Scan Summary

Scanner Findings
Vulnerability Finding Vulnerabilities 5 High 10 Medium 1 Low
Data Finding Sensitive Data -
Secret Finding Secrets -
IaC Misconfiguration IaC Misconfigurations -
SAST Finding SAST Findings -
Software Management Finding Software Management Findings -
Total 5 High 10 Medium 1 Low

View scan details in Wiz

To detect these findings earlier in the dev lifecycle, try using Wiz Code VS Code Extension.

@wiz-code-21c5ec5a85 wiz-code-21c5ec5a85 Bot deleted the wiz-auto-remediation-2e7fa9d10723f56e branch May 12, 2026 20:25
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Projects

None yet

Development

Successfully merging this pull request may close these issues.

0 participants