Skip to content

Update dependency jest to v27 #16

New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Open
dev-mend-for-github-com wants to merge 1 commit into
base: main
Choose a base branch
from

Update dependency jest to v27

f1284ef
Select commit
Loading
Failed to load commit list.
Open

Update dependency jest to v27 #16

Update dependency jest to v27
f1284ef
Select commit
Loading
Failed to load commit list.
Dev - Mend for GitHub.com / Mend Security Check failed Feb 25, 2026 in 25m 26s

Security Report

You have successfully remediated 52 vulnerabilities, but introduced 1 new vulnerabilities in this branch.

❌ New vulnerabilities:

Vulnerability Severity CVSS Score Vulnerable Library Direct Library Suggested Fix Issue Reachability
CVE-398484-724968

Path to dependency file: /ndp-check-redirects/package.json

Path to vulnerable library: /ndp-check-redirects/package.json,/codesnippets-auto-pr/package.json

Dependency Hierarchy:

-> jest-27.5.1.tgz (Root Library)

   -> core-27.5.1.tgz

     -> transform-27.5.1.tgz

       -> core-7.29.0.tgz

         -> debug-4.4.3.tgz

           -> ❌ ms-2.1.3.tgz (Vulnerable Library)

Critical 9.8 Transitive ms-2.1.3.tgz jest-27.5.1.tgz None

✔️ Remediated vulnerabilities:

Vulnerability Vulnerable Library
CVE-2021-32640 ws-5.2.2.tgz
CVE-2020-7789 node-notifier-5.4.3.tgz
CVE-2025-15284 qs-6.5.2.tgz
CVE-970321-722573 acorn-5.7.3.tgz
CVE-402712-500231 dashdash-1.14.1.tgz
CVE-666740-369617 acorn-5.7.3.tgz
CVE-2021-20066 jsdom-11.12.0.tgz
CVE-2022-37598 uglify-js-3.7.1.tgz
CVE-2020-7788 ini-1.3.5.tgz
CVE-2021-44906 minimist-0.0.10.tgz
WS-2020-0042 acorn-6.4.0.tgz
CVE-2026-2391 qs-6.5.2.tgz
CVE-2021-37712 tar-4.4.8.tgz
CVE-2021-3918 json-schema-0.2.3.tgz
CVE-2022-24999 qs-6.5.2.tgz
CVE-2020-7774 y18n-4.0.0.tgz
CVE-2021-23343 path-parse-1.0.6.tgz
CVE-814504-1548 isstream-0.1.2.tgz
GHSA-7fhm-mqm4-2wp7 acorn-6.4.0.tgz
CVE-2021-27918 acorn-5.7.3.tgz
CVE-2020-7598 minimist-0.0.10.tgz
CVE-2021-23362 hosted-git-info-2.8.5.tgz
CVE-2021-3777 tmpl-1.0.4.tgz
CVE-495493-603164 delegates-1.0.0.tgz
WS-2020-0450 handlebars-4.5.3.tgz
CVE-2022-37598 uglify-js-3.7.0.tgz
CVE-2024-4068 braces-2.3.2.tgz
CVE-2021-37701 tar-4.4.8.tgz
CVE-2022-46175 json5-2.1.1.tgz
GHSA-7fhm-mqm4-2wp7 minimist-1.2.0.tgz
CVE-2021-37713 tar-4.4.8.tgz
CVE-2020-15366 ajv-6.10.2.tgz
GHSA-6chw-6frg-f759 acorn-6.4.0.tgz
GHSA-7fhm-mqm4-2wp7 minimist-0.0.10.tgz
CVE-2022-38900 decode-uri-component-0.2.0.tgz
CVE-88990-306783 request-2.88.0.tgz
CVE-2020-7608 yargs-parser-13.1.1.tgz
CVE-2021-32804 tar-4.4.8.tgz
CVE-2025-7783 form-data-2.3.3.tgz
CVE-72435-185255 tweetnacl-0.14.5.tgz
CVE-2025-69873 ajv-6.10.2.tgz
GHSA-35jh-r3h4-6jhm lodash-4.17.19.tgz
CVE-2021-32803 tar-4.4.8.tgz
CVE-2023-28155 request-2.88.0.tgz
CVE-893166-217151 form-data-2.3.3.tgz
WS-2020-0042 acorn-5.7.3.tgz
CVE-275296-826791 qs-6.5.2.tgz
CVE-2024-4067 micromatch-3.1.10.tgz
CVE-2019-20149 kind-of-6.0.2.tgz
CVE-2021-23383 handlebars-4.5.3.tgz
CVE-2021-23369 handlebars-4.5.3.tgz
GHSA-7fhm-mqm4-2wp7 minimist-0.0.8.tgz

Base branch total remaining vulnerabilities: 97
Base branch commit: a92eb37bc4e41a0be70aa320ab2b1ec5e30a1477


Total libraries scanned: 570

Scan token: d217a561100546c6b7e4daf6cca4d136

View more details on Dev - Mend for GitHub.com