Software catalogue for npm Inc.
Showing elements 1 - 20 out of 35
Latest security bulletins
| Secuity bulletin | Severity | Status | Published |
|---|---|---|---|
| SB2026012845: Path traversal in tar | Medium | 28.01.2026 | |
| SB2026011995: Prototype pollution in js-yaml | Medium | 19.01.2026 | |
| SB2026011522: Privilege escalation in npm cli | Low | 15.01.2026 | |
| SB2026011229: Remote denial of service in qs | Medium | 12.01.2026 | |
| SB2025120217: SQL injection in TypeORM | Medium | 02.12.2025 | |
| SB2024032234: Denial of service in node-tar | Medium | 22.03.2024 | |
| SB2023080361: Regular expression denial of service in semver | Medium | 03.08.2023 | |
| SB2022112910: Prototype pollution in qs | Medium | 29.11.2022 | |
| SB2021111707: Multiple vulnerabilities in NPM Tar | Medium | 17.11.2021 | |
| SB2021111706: Path traversal in NPM Tar | Medium | 17.11.2021 |