Update dependency body-parser to v1.20.3 #39

Security Report

You have successfully remediated 5 vulnerabilities, but introduced 7 new vulnerabilities in this branch.

❌ New vulnerabilities:

Vulnerability	Severity	CVSS Score	Vulnerable Library	Direct Library	Suggested Fix	Issue	Reachability
CVE-2019-10747 Path to dependency file: /package.json Path to vulnerable library: /package.json Dependency Hierarchy: -> forever-2.0.0.tgz (Root Library) -> forever-monitor-2.0.0.tgz -> chokidar-2.1.8.tgz -> braces-2.3.2.tgz -> snapdragon-0.8.2.tgz -> base-0.11.2.tgz -> cache-base-1.0.1.tgz -> ❌ set-value-2.0.0.tgz (Vulnerable Library)	Critical	9.8	`Transitive` set-value-2.0.0.tgz	forever-2.0.0.tgz	`Transitive` 2.0.1	#11	Unreachable
CVE-2019-10747 Path to dependency file: /package.json Path to vulnerable library: /package.json Dependency Hierarchy: -> forever-2.0.0.tgz (Root Library) -> forever-monitor-2.0.0.tgz -> chokidar-2.1.8.tgz -> braces-2.3.2.tgz -> snapdragon-0.8.2.tgz -> base-0.11.2.tgz -> cache-base-1.0.1.tgz -> union-value-1.0.0.tgz -> ❌ set-value-0.4.3.tgz (Vulnerable Library)	Critical	9.8	`Transitive` set-value-0.4.3.tgz	forever-2.0.0.tgz	`Transitive` 2.0.1	#11	Unreachable
CVE-2019-10746 Path to dependency file: /package.json Path to vulnerable library: /package.json Dependency Hierarchy: -> forever-2.0.0.tgz (Root Library) -> forever-monitor-2.0.0.tgz -> chokidar-2.1.8.tgz -> braces-2.3.2.tgz -> snapdragon-0.8.2.tgz -> base-0.11.2.tgz -> ❌ mixin-deep-1.3.1.tgz (Vulnerable Library)	Critical	9.8	`Transitive` mixin-deep-1.3.1.tgz	forever-2.0.0.tgz	`Transitive` 1.3.2	#11	Unreachable
CVE-2026-2391 Path to dependency file: /package.json Path to vulnerable library: /package.json Dependency Hierarchy: -> body-parser-1.20.3.tgz (Root Library) -> ❌ qs-6.13.0.tgz (Vulnerable Library)	Low	3.7	`Transitive` qs-6.13.0.tgz	body-parser-1.20.3.tgz	`Transitive` 6.14.2	None	Unreachable
CVE-2025-15284 Path to dependency file: /package.json Path to vulnerable library: /package.json Dependency Hierarchy: -> body-parser-1.20.3.tgz (Root Library) -> ❌ qs-6.13.0.tgz (Vulnerable Library)	Low	3.7	`Transitive` qs-6.13.0.tgz	body-parser-1.20.3.tgz	`Transitive` qs - 6.14.1	None	Unreachable
CVE-289561-266276 Path to dependency file: /package.json Path to vulnerable library: /package.json Dependency Hierarchy: -> body-parser-1.20.3.tgz (Root Library) -> http-errors-2.0.0.tgz -> ❌ inherits-2.0.4.tgz (Vulnerable Library)	Critical	9.8	`Transitive` inherits-2.0.4.tgz	body-parser-1.20.3.tgz		None
CVE-2025-13466 Path to dependency file: /package.json Path to vulnerable library: /package.json Dependency Hierarchy: -> ❌ body-parser-1.20.3.tgz (Vulnerable Library)	Medium	5.8	`Direct` body-parser-1.20.3.tgz	body-parser-1.20.3.tgz	body-parser - 2.2.1	None

✔️ Remediated vulnerabilities:

Vulnerability	Vulnerable Library
GHSA-c3m8-x3cg-qm2c	helmet-csp-1.2.2.tgz
GHSA-mh5c-679w-hh4r	mongodb-2.2.36.tgz
GHSA-7fhm-mqm4-2wp7	minimist-1.2.0.tgz
GHSA-7fhm-mqm4-2wp7	minimist-0.0.10.tgz
GHSA-7fhm-mqm4-2wp7	minimist-0.0.8.tgz

Base branch total remaining vulnerabilities: 72
Base branch commit: 09abfcb7c80bc0d91a4161008058c051cd300bfb

Total libraries scanned: 414

Scan token: b6f3a3f595b84a03806f91499bb70103

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

Update dependency body-parser to v1.20.3 #39

Uh oh!

Uh oh!

Update dependency body-parser to v1.20.3 #39

Uh oh!

Security Report

Re-running checks...

Update dependency body-parser to v1.20.3 #39

Are you sure you want to change the base?

Uh oh!

Update dependency body-parser to v1.20.3

Uh oh!

Update dependency body-parser to v1.20.3 #39

Uh oh!

Security Report

Re-running checks...