{ "version": "14.0.3", "schema": "https://gitlab.com/gitlab-org/security-products/security-report-schemas/-/raw/v14.0.3/dist/dependency-scanning-report-format.json", "vulnerabilities": [ { "id": "npm::advisory:1067285::minimist", "cve": "npm::advisory:1067285::minimist", "category": "dependency_scanning", "name": "minimist", "message": "Prototype Pollution in minimist", "description": "Prototype Pollution in minimist", "severity": "High", "confidence": "High", "scanner": { "id": "npm_audit_advisories", "name": "NPM Audit v2" }, "location": { "file": "package-lock.json", "dependency": { "package": { "name": "minimist" }, "version": "<=1.2.5" } }, "identifiers": [ { "type": "cve", "name": "Prototype Pollution in minimist", "value": "1067285", "url": "https://github.com/advisories/GHSA-xvch-5gv4-984h" } ], "links": [ { "url": "https://github.com/advisories/GHSA-xvch-5gv4-984h" } ] }, { "id": "npm::advisory:1065257::trim", "cve": "npm::advisory:1065257::trim", "category": "dependency_scanning", "name": "trim", "message": "Regular Expression Denial of Service in trim", "description": "Regular Expression Denial of Service in trim", "severity": "High", "confidence": "High", "scanner": { "id": "npm_audit_advisories", "name": "NPM Audit v2" }, "location": { "file": "package-lock.json", "dependency": { "package": { "name": "trim" }, "version": "<0.0.3" } }, "identifiers": [ { "type": "cve", "name": "Regular Expression Denial of Service in trim", "value": "1065257", "url": "https://github.com/advisories/GHSA-w5p7-h5w8-2hfq" } ], "links": [ { "url": "https://github.com/advisories/GHSA-w5p7-h5w8-2hfq" } ] } ], "remediations": [], "dependency_files": [ { "path": "package-lock.json", "package_manager": "npm", "dependencies": [ { "package": { "name": "minimist" }, "version": "<=1.2.5" }, { "package": { "name": "trim" }, "version": "<0.0.3" } ] } ] }