chore(deps): update node.js to v24 #136
Security Report
❌ New vulnerabilities:
| Vulnerability | Severity |  CVSS Score |
Vulnerable Library | Direct Library | Suggested Fix | Issue |
|---|---|---|---|---|---|---|
CVE-2025-29927Path to dependency file: /package.json Path to vulnerable library: /package.json Dependency Hierarchy: -> ❌ next-13.4.3.tgz (Vulnerable Library) |
 Critical |
9.1 | Direct next-13.4.3.tgz |
next-13.4.3.tgz | 13.5.9 | None |
CVE-2024-51479Path to dependency file: /package.json Path to vulnerable library: /package.json Dependency Hierarchy: -> ❌ next-13.4.3.tgz (Vulnerable Library) |
 High |
7.5 | Direct next-13.4.3.tgz |
next-13.4.3.tgz | 13.5.8 | None |
CVE-2024-39693Path to dependency file: /package.json Path to vulnerable library: /package.json Dependency Hierarchy: -> ❌ next-13.4.3.tgz (Vulnerable Library) |
High |
7.5 | Direct next-13.4.3.tgz |
next-13.4.3.tgz | 13.5.0 | None |
CVE-2024-34351Path to dependency file: /package.json Path to vulnerable library: /package.json Dependency Hierarchy: -> ❌ next-13.4.3.tgz (Vulnerable Library) |
High |
7.5 | Direct next-13.4.3.tgz |
next-13.4.3.tgz | 13.5.7 | None |
CVE-2024-34350Path to dependency file: /package.json Path to vulnerable library: /package.json Dependency Hierarchy: -> ❌ next-13.4.3.tgz (Vulnerable Library) |
High |
7.5 | Direct next-13.4.3.tgz |
next-13.4.3.tgz | 13.5.1-canary.0 | None |
CVE-2024-21538Path to dependency file: /package.json Path to vulnerable library: /package.json Dependency Hierarchy: -> eslint-8.40.0.tgz (Root Library) -> ❌ cross-spawn-7.0.3.tgz (Vulnerable Library) |
High |
7.5 | Transitive cross-spawn-7.0.3.tgz |
eslint-8.40.0.tgz | Transitive https://github.com/moxystudio/node-cross-spawn.git - v7.0.5 |
None |
CVE-2023-4316Path to dependency file: /package.json Path to vulnerable library: /package.json Dependency Hierarchy: -> next-13.4.3.tgz (Root Library) -> ❌ zod-3.21.4.tgz (Vulnerable Library) |
High |
7.5 | Transitive zod-3.21.4.tgz |
next-13.4.3.tgz | None | |
CVE-2025-57822Path to dependency file: /package.json Path to vulnerable library: /package.json Dependency Hierarchy: -> ❌ next-13.4.3.tgz (Vulnerable Library) |
 Medium |
6.5 | Direct next-13.4.3.tgz |
next-13.4.3.tgz | 14.2.32 | None |
CVE-2025-57752Path to dependency file: /package.json Path to vulnerable library: /package.json Dependency Hierarchy: -> ❌ next-13.4.3.tgz (Vulnerable Library) |
Medium |
6.2 | Direct next-13.4.3.tgz |
next-13.4.3.tgz | 14.2.31 | None |
CVE-2025-27789Path to dependency file: /package.json Path to vulnerable library: /package.json Dependency Hierarchy: -> concurrently-8.2.2.tgz (Root Library) -> date-fns-2.30.0.tgz -> ❌ runtime-7.24.7.tgz (Vulnerable Library) |
Medium |
6.2 | Transitive runtime-7.24.7.tgz |
concurrently-8.2.2.tgz | Transitive 7.26.10 |
None |
CVE-2024-47831Path to dependency file: /package.json Path to vulnerable library: /package.json Dependency Hierarchy: -> ❌ next-13.4.3.tgz (Vulnerable Library) |
Medium |
5.9 | Direct next-13.4.3.tgz |
next-13.4.3.tgz | 13.5.8 | None |
CVE-2024-56332Path to dependency file: /package.json Path to vulnerable library: /package.json Dependency Hierarchy: -> ❌ next-13.4.3.tgz (Vulnerable Library) |
Medium |
5.3 | Direct next-13.4.3.tgz |
next-13.4.3.tgz | 13.5.7-canary.9 | None |
CVE-2024-4067Path to dependency file: /package.json Path to vulnerable library: /package.json Dependency Hierarchy: -> tailwindcss-3.3.2.tgz (Root Library) -> ❌ micromatch-4.0.7.tgz (Vulnerable Library) |
Medium |
5.3 | Transitive micromatch-4.0.7.tgz |
tailwindcss-3.3.2.tgz | Transitive 4.0.8 |
None |
CVE-2023-44270Path to dependency file: /package.json Path to vulnerable library: /package.json Dependency Hierarchy: -> ❌ postcss-8.4.23.tgz (Vulnerable Library) |
Medium |
5.3 | Direct postcss-8.4.23.tgz |
postcss-8.4.23.tgz | 8.4.31 | None |
CVE-2023-44270Path to dependency file: /package.json Path to vulnerable library: /package.json Dependency Hierarchy: -> next-13.4.3.tgz (Root Library) -> ❌ postcss-8.4.14.tgz (Vulnerable Library) |
Medium |
5.3 | Transitive postcss-8.4.14.tgz |
next-13.4.3.tgz | Transitive 8.4.31 |
None |
CVE-2025-55173Path to dependency file: /package.json Path to vulnerable library: /package.json Dependency Hierarchy: -> ❌ next-13.4.3.tgz (Vulnerable Library) |
Medium |
4.3 | Direct next-13.4.3.tgz |
next-13.4.3.tgz | None | |
CVE-2025-48068Path to dependency file: /package.json Path to vulnerable library: /package.json Dependency Hierarchy: -> ❌ next-13.4.3.tgz (Vulnerable Library) |
Medium |
4.3 | Direct next-13.4.3.tgz |
next-13.4.3.tgz | 14.2.30 | None |
CVE-2024-55565Path to dependency file: /package.json Path to vulnerable library: /package.json Dependency Hierarchy: -> postcss-8.4.23.tgz (Root Library) -> ❌ nanoid-3.3.7.tgz (Vulnerable Library) |
Medium |
4.3 | Transitive nanoid-3.3.7.tgz |
postcss-8.4.23.tgz | Transitive 3.3.8 |
None |
CVE-2025-32421Path to dependency file: /package.json Path to vulnerable library: /package.json Dependency Hierarchy: -> ❌ next-13.4.3.tgz (Vulnerable Library) |
 Low |
3.7 | Direct next-13.4.3.tgz |
next-13.4.3.tgz | 14.2.24 | None |
CVE-2025-5889Path to dependency file: /package.json Path to vulnerable library: /package.json Dependency Hierarchy: -> tailwindcss-3.3.2.tgz (Root Library) -> sucrase-3.35.0.tgz -> glob-10.4.2.tgz -> minimatch-9.0.5.tgz -> ❌ brace-expansion-2.0.1.tgz (Vulnerable Library) |
Low |
3.1 | Transitive brace-expansion-2.0.1.tgz |
tailwindcss-3.3.2.tgz | Transitive brace-expansion - 4.0.1 |
None |
CVE-2025-5889Path to dependency file: /package.json Path to vulnerable library: /package.json Dependency Hierarchy: -> eslint-8.40.0.tgz (Root Library) -> minimatch-3.1.2.tgz -> ❌ brace-expansion-1.1.11.tgz (Vulnerable Library) |
Low |
3.1 | Transitive brace-expansion-1.1.11.tgz |
eslint-8.40.0.tgz | Transitive 1.1.12 |
None |
Base branch total remaining vulnerabilities: 0
Base branch commit: null
Total libraries scanned: 392
Scan token: b79fe0b104244f389e7c8c784567ee62