@stordata/vsphere-soapify 1.0.20251113140933 → 1.0.20251219151129
This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.
- package/gl-sast-report.json +55 -55
- package/gl-sbom-npm-npm.cdx.json +22 -22
- package/package.json +3 -3
package/gl-sast-report.json
CHANGED
|
@@ -1,52 +1,4 @@
|
|
|
1
1
|
{
|
|
2
|
-
"version": "15.2.2",
|
|
3
|
-
"vulnerabilities": [
|
|
4
|
-
{
|
|
5
|
-
"id": "8646136a771899e2fcd1f86f3216f6dd337537c591f09e104b0abd2422ecdd55",
|
|
6
|
-
"category": "sast",
|
|
7
|
-
"name": "Incorrect regular expression",
|
|
8
|
-
"description": "Ensure that the regex used to compare with user supplied input is safe from regular expression denial of service.\n",
|
|
9
|
-
"cve": "semgrep_id:nodejs_scan.javascript-dos-rule-regex_dos:19:20",
|
|
10
|
-
"severity": "Medium",
|
|
11
|
-
"scanner": {
|
|
12
|
-
"id": "semgrep",
|
|
13
|
-
"name": "Semgrep"
|
|
14
|
-
},
|
|
15
|
-
"location": {
|
|
16
|
-
"file": "lib/parser.js",
|
|
17
|
-
"start_line": 19,
|
|
18
|
-
"end_line": 20
|
|
19
|
-
},
|
|
20
|
-
"identifiers": [
|
|
21
|
-
{
|
|
22
|
-
"type": "semgrep_id",
|
|
23
|
-
"name": "nodejs_scan.javascript-dos-rule-regex_dos",
|
|
24
|
-
"value": "nodejs_scan.javascript-dos-rule-regex_dos"
|
|
25
|
-
},
|
|
26
|
-
{
|
|
27
|
-
"type": "cwe",
|
|
28
|
-
"name": "CWE-185",
|
|
29
|
-
"value": "185",
|
|
30
|
-
"url": "https://cwe.mitre.org/data/definitions/185.html"
|
|
31
|
-
},
|
|
32
|
-
{
|
|
33
|
-
"type": "owasp",
|
|
34
|
-
"name": "A05:2021 - Security Misconfiguration",
|
|
35
|
-
"value": "A05:2021"
|
|
36
|
-
},
|
|
37
|
-
{
|
|
38
|
-
"type": "owasp",
|
|
39
|
-
"name": "A6:2017 - Security Misconfiguration",
|
|
40
|
-
"value": "A6:2017"
|
|
41
|
-
},
|
|
42
|
-
{
|
|
43
|
-
"type": "njsscan_rule_type",
|
|
44
|
-
"name": "NodeJS Scan ID javascript-dos-rule-regex_dos",
|
|
45
|
-
"value": "Ensure that the regex used to compare with user supplied input is safe from regular expression denial of service."
|
|
46
|
-
}
|
|
47
|
-
]
|
|
48
|
-
}
|
|
49
|
-
],
|
|
50
2
|
"scan": {
|
|
51
3
|
"analyzer": {
|
|
52
4
|
"id": "semgrep",
|
|
@@ -55,7 +7,7 @@
|
|
|
55
7
|
"vendor": {
|
|
56
8
|
"name": "GitLab"
|
|
57
9
|
},
|
|
58
|
-
"version": "6.
|
|
10
|
+
"version": "6.14.0"
|
|
59
11
|
},
|
|
60
12
|
"scanner": {
|
|
61
13
|
"id": "semgrep",
|
|
@@ -64,7 +16,7 @@
|
|
|
64
16
|
"vendor": {
|
|
65
17
|
"name": "GitLab"
|
|
66
18
|
},
|
|
67
|
-
"version": "1.
|
|
19
|
+
"version": "1.145.0"
|
|
68
20
|
},
|
|
69
21
|
"primary_identifiers": [
|
|
70
22
|
{
|
|
@@ -3042,17 +2994,17 @@
|
|
|
3042
2994
|
}
|
|
3043
2995
|
],
|
|
3044
2996
|
"type": "sast",
|
|
3045
|
-
"start_time": "2025-
|
|
3046
|
-
"end_time": "2025-
|
|
2997
|
+
"start_time": "2025-12-19T15:09:12",
|
|
2998
|
+
"end_time": "2025-12-19T15:09:26",
|
|
3047
2999
|
"status": "success",
|
|
3048
3000
|
"observability": {
|
|
3049
3001
|
"events": [
|
|
3050
3002
|
{
|
|
3051
3003
|
"event": "collect_sast_scan_metrics_from_pipeline",
|
|
3052
|
-
"property": "
|
|
3004
|
+
"property": "de502f56-d7b2-4049-9494-30731271b4d6",
|
|
3053
3005
|
"label": "semgrep",
|
|
3054
3006
|
"value": 0,
|
|
3055
|
-
"version": "6.
|
|
3007
|
+
"version": "6.14.0",
|
|
3056
3008
|
"exit_code": 0,
|
|
3057
3009
|
"override_count": 0,
|
|
3058
3010
|
"passthrough_count": 0,
|
|
@@ -3062,5 +3014,53 @@
|
|
|
3062
3014
|
}
|
|
3063
3015
|
]
|
|
3064
3016
|
}
|
|
3065
|
-
}
|
|
3017
|
+
},
|
|
3018
|
+
"version": "15.2.2",
|
|
3019
|
+
"vulnerabilities": [
|
|
3020
|
+
{
|
|
3021
|
+
"id": "8646136a771899e2fcd1f86f3216f6dd337537c591f09e104b0abd2422ecdd55",
|
|
3022
|
+
"category": "sast",
|
|
3023
|
+
"name": "Incorrect regular expression",
|
|
3024
|
+
"description": "Ensure that the regex used to compare with user supplied input is safe from regular expression denial of service.\n",
|
|
3025
|
+
"cve": "semgrep_id:nodejs_scan.javascript-dos-rule-regex_dos:19:20",
|
|
3026
|
+
"severity": "Medium",
|
|
3027
|
+
"scanner": {
|
|
3028
|
+
"id": "semgrep",
|
|
3029
|
+
"name": "Semgrep"
|
|
3030
|
+
},
|
|
3031
|
+
"location": {
|
|
3032
|
+
"file": "lib/parser.js",
|
|
3033
|
+
"start_line": 19,
|
|
3034
|
+
"end_line": 20
|
|
3035
|
+
},
|
|
3036
|
+
"identifiers": [
|
|
3037
|
+
{
|
|
3038
|
+
"type": "semgrep_id",
|
|
3039
|
+
"name": "nodejs_scan.javascript-dos-rule-regex_dos",
|
|
3040
|
+
"value": "nodejs_scan.javascript-dos-rule-regex_dos"
|
|
3041
|
+
},
|
|
3042
|
+
{
|
|
3043
|
+
"type": "cwe",
|
|
3044
|
+
"name": "CWE-185",
|
|
3045
|
+
"value": "185",
|
|
3046
|
+
"url": "https://cwe.mitre.org/data/definitions/185.html"
|
|
3047
|
+
},
|
|
3048
|
+
{
|
|
3049
|
+
"type": "owasp",
|
|
3050
|
+
"name": "A05:2021 - Security Misconfiguration",
|
|
3051
|
+
"value": "A05:2021"
|
|
3052
|
+
},
|
|
3053
|
+
{
|
|
3054
|
+
"type": "owasp",
|
|
3055
|
+
"name": "A6:2017 - Security Misconfiguration",
|
|
3056
|
+
"value": "A6:2017"
|
|
3057
|
+
},
|
|
3058
|
+
{
|
|
3059
|
+
"type": "njsscan_rule_type",
|
|
3060
|
+
"name": "NodeJS Scan ID javascript-dos-rule-regex_dos",
|
|
3061
|
+
"value": "Ensure that the regex used to compare with user supplied input is safe from regular expression denial of service."
|
|
3062
|
+
}
|
|
3063
|
+
]
|
|
3064
|
+
}
|
|
3065
|
+
]
|
|
3066
3066
|
}
|
package/gl-sbom-npm-npm.cdx.json
CHANGED
|
@@ -1,15 +1,15 @@
|
|
|
1
1
|
{
|
|
2
2
|
"bomFormat": "CycloneDX",
|
|
3
3
|
"specVersion": "1.4",
|
|
4
|
-
"serialNumber": "urn:uuid:
|
|
4
|
+
"serialNumber": "urn:uuid:558bf8b9-3a44-4013-9965-165a0ed46d1e",
|
|
5
5
|
"version": 1,
|
|
6
6
|
"metadata": {
|
|
7
|
-
"timestamp": "2025-
|
|
7
|
+
"timestamp": "2025-12-19T15:11:17Z",
|
|
8
8
|
"tools": [
|
|
9
9
|
{
|
|
10
10
|
"vendor": "GitLab",
|
|
11
11
|
"name": "Gemnasium",
|
|
12
|
-
"version": "6.
|
|
12
|
+
"version": "6.6.1"
|
|
13
13
|
}
|
|
14
14
|
],
|
|
15
15
|
"authors": [
|
|
@@ -148,17 +148,17 @@
|
|
|
148
148
|
},
|
|
149
149
|
{
|
|
150
150
|
"name": "@sinonjs/fake-timers",
|
|
151
|
-
"version": "
|
|
152
|
-
"purl": "pkg:npm/%40sinonjs/fake-timers@
|
|
151
|
+
"version": "15.1.0",
|
|
152
|
+
"purl": "pkg:npm/%40sinonjs/fake-timers@15.1.0",
|
|
153
153
|
"type": "library",
|
|
154
|
-
"bom-ref": "pkg:npm/%40sinonjs/fake-timers@
|
|
154
|
+
"bom-ref": "pkg:npm/%40sinonjs/fake-timers@15.1.0"
|
|
155
155
|
},
|
|
156
156
|
{
|
|
157
157
|
"name": "@sinonjs/samsam",
|
|
158
|
-
"version": "8.0.
|
|
159
|
-
"purl": "pkg:npm/%40sinonjs/samsam@8.0.
|
|
158
|
+
"version": "8.0.3",
|
|
159
|
+
"purl": "pkg:npm/%40sinonjs/samsam@8.0.3",
|
|
160
160
|
"type": "library",
|
|
161
|
-
"bom-ref": "pkg:npm/%40sinonjs/samsam@8.0.
|
|
161
|
+
"bom-ref": "pkg:npm/%40sinonjs/samsam@8.0.3"
|
|
162
162
|
},
|
|
163
163
|
{
|
|
164
164
|
"name": "@stordata/eslint-config",
|
|
@@ -566,6 +566,13 @@
|
|
|
566
566
|
"type": "library",
|
|
567
567
|
"bom-ref": "pkg:npm/diff@7.0.0"
|
|
568
568
|
},
|
|
569
|
+
{
|
|
570
|
+
"name": "diff",
|
|
571
|
+
"version": "8.0.2",
|
|
572
|
+
"purl": "pkg:npm/diff@8.0.2",
|
|
573
|
+
"type": "library",
|
|
574
|
+
"bom-ref": "pkg:npm/diff@8.0.2"
|
|
575
|
+
},
|
|
569
576
|
{
|
|
570
577
|
"name": "doctrine",
|
|
571
578
|
"version": "2.1.0",
|
|
@@ -1371,13 +1378,6 @@
|
|
|
1371
1378
|
"type": "library",
|
|
1372
1379
|
"bom-ref": "pkg:npm/lodash@4.17.21"
|
|
1373
1380
|
},
|
|
1374
|
-
{
|
|
1375
|
-
"name": "lodash.get",
|
|
1376
|
-
"version": "4.4.2",
|
|
1377
|
-
"purl": "pkg:npm/lodash.get@4.4.2",
|
|
1378
|
-
"type": "library",
|
|
1379
|
-
"bom-ref": "pkg:npm/lodash.get@4.4.2"
|
|
1380
|
-
},
|
|
1381
1381
|
{
|
|
1382
1382
|
"name": "lodash.merge",
|
|
1383
1383
|
"version": "4.6.2",
|
|
@@ -1842,10 +1842,10 @@
|
|
|
1842
1842
|
},
|
|
1843
1843
|
{
|
|
1844
1844
|
"name": "sinon",
|
|
1845
|
-
"version": "21.0.
|
|
1846
|
-
"purl": "pkg:npm/sinon@21.0.
|
|
1845
|
+
"version": "21.0.1",
|
|
1846
|
+
"purl": "pkg:npm/sinon@21.0.1",
|
|
1847
1847
|
"type": "library",
|
|
1848
|
-
"bom-ref": "pkg:npm/sinon@21.0.
|
|
1848
|
+
"bom-ref": "pkg:npm/sinon@21.0.1"
|
|
1849
1849
|
},
|
|
1850
1850
|
{
|
|
1851
1851
|
"name": "sinon-chai",
|
|
@@ -1856,10 +1856,10 @@
|
|
|
1856
1856
|
},
|
|
1857
1857
|
{
|
|
1858
1858
|
"name": "soap",
|
|
1859
|
-
"version": "1.6.
|
|
1860
|
-
"purl": "pkg:npm/soap@1.6.
|
|
1859
|
+
"version": "1.6.1",
|
|
1860
|
+
"purl": "pkg:npm/soap@1.6.1",
|
|
1861
1861
|
"type": "library",
|
|
1862
|
-
"bom-ref": "pkg:npm/soap@1.6.
|
|
1862
|
+
"bom-ref": "pkg:npm/soap@1.6.1"
|
|
1863
1863
|
},
|
|
1864
1864
|
{
|
|
1865
1865
|
"name": "string-width",
|
package/package.json
CHANGED
|
@@ -1,6 +1,6 @@
|
|
|
1
1
|
{
|
|
2
2
|
"name": "@stordata/vsphere-soapify",
|
|
3
|
-
"version":"1.0.
|
|
3
|
+
"version":"1.0.20251219151129",
|
|
4
4
|
"description": "A NodeJS abstraction layer for the vSphere SOAP API",
|
|
5
5
|
"main": "index.js",
|
|
6
6
|
"scripts": {
|
|
@@ -30,7 +30,7 @@
|
|
|
30
30
|
"axios": "1.13.2",
|
|
31
31
|
"debug": "4.4.3",
|
|
32
32
|
"lodash": "4.17.21",
|
|
33
|
-
"soap": "1.6.
|
|
33
|
+
"soap": "1.6.1",
|
|
34
34
|
"tough-cookie": "6.0.0"
|
|
35
35
|
},
|
|
36
36
|
"devDependencies": {
|
|
@@ -45,7 +45,7 @@
|
|
|
45
45
|
"mocha": "11.7.5",
|
|
46
46
|
"mockdate": "3.0.5",
|
|
47
47
|
"nock": "13.5.6",
|
|
48
|
-
"sinon": "21.0.
|
|
48
|
+
"sinon": "21.0.1",
|
|
49
49
|
"sinon-chai": "3.7.0"
|
|
50
50
|
}
|
|
51
51
|
}
|