Update dependency node-fetch to v2.6.7 #14

Security Report

You have successfully remediated 13 vulnerabilities, but introduced 1 new vulnerabilities in this branch.

❌ New vulnerabilities:

Vulnerability	Severity	CVSS Score	Vulnerable Library	Direct Library	Suggested Fix	Issue	Reachability
CVE-952079-685214 Path to dependency file: /nexmo-changelog/package.json Path to vulnerable library: /nexmo-changelog/package.json Dependency Hierarchy: -> ❌ node-fetch-2.6.7.tgz (Vulnerable Library)	Critical	9.8	`Direct` node-fetch-2.6.7.tgz	node-fetch-2.6.7.tgz		None

✔️ Remediated vulnerabilities:

Vulnerability	Vulnerable Library
GHSA-7fhm-mqm4-2wp7	acorn-5.7.3.tgz
GHSA-7fhm-mqm4-2wp7	minimist-1.2.0.tgz
GHSA-6chw-6frg-f759	acorn-6.4.0.tgz
GHSA-7fhm-mqm4-2wp7	minimist-0.0.10.tgz
CVE-2022-37598	uglify-js-3.7.1.tgz
CVE-2020-15366	ajv-6.10.0.tgz
CVE-2021-23337	lodash-4.17.19.tgz
GHSA-35jh-r3h4-6jhm	lodash-4.17.19.tgz
CVE-2020-28500	lodash-4.17.19.tgz
GHSA-7fhm-mqm4-2wp7	acorn-6.4.0.tgz
CVE-2025-54798	tmp-0.0.33.tgz
GHSA-6chw-6frg-f759	acorn-5.7.3.tgz
GHSA-7fhm-mqm4-2wp7	minimist-0.0.8.tgz

Base branch total remaining vulnerabilities: 72
Base branch commit: 1fa94290fb5d5a75015c22faad5467200e4eff4a

Total libraries scanned: 609

Scan token: 7c4bba73ffe34d958189e7355a9b19bf

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

Update dependency node-fetch to v2.6.7 #14

Uh oh!

Uh oh!

Update dependency node-fetch to v2.6.7 #14

Uh oh!

Security Report

Re-running checks...

Update dependency node-fetch to v2.6.7 #14

Are you sure you want to change the base?

Uh oh!

Update dependency node-fetch to v2.6.7

Uh oh!

Update dependency node-fetch to v2.6.7 #14

Uh oh!

Security Report

Re-running checks...