Skip to content

npm audit #75

New issue
New issue
Open
Open
npm audit#75
@jakebromberg

Description

@jakebromberg
jakebromberg
opened on Sep 29, 2025
# npm audit report

esbuild  <=0.24.2
Severity: moderate
esbuild enables any website to send any requests to the development server and read the response - https://github.com/advisories/GHSA-67mh-4wv8-2f99
fix available via `npm audit fix --force`
Will install drizzle-kit@0.31.5, which is a breaking change
node_modules/drizzle-kit/node_modules/esbuild
  drizzle-kit  0.9.1 - 0.9.54 || 0.12.9 - 0.18.1 || 0.19.2-9340465 - 0.30.6 || >=1.0.0-beta.1-00df263
  Depends on vulnerable versions of esbuild
  node_modules/drizzle-kit

2 moderate severity vulnerabilities

To address all issues (including breaking changes), run:
  npm audit fix --force

Metadata

Metadata

Assignees

No one assigned

    Labels

    No labels
    No labels

    Type

    No type

    Projects

    No projects

    Milestone

    No milestone

    Relationships

    None yet

    Development

    No branches or pull requests

    Issue actions