@sunchao116/mcp-audit 1.0.0

This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.
Files changed (48) hide show
  1. package/package.json +36 -0
  2. package/src/audit/currentAudit.js +50 -0
  3. package/src/audit/getDepChain.js +47 -0
  4. package/src/audit/index.js +28 -0
  5. package/src/audit/normalizeAuditResult.js +47 -0
  6. package/src/audit/npmAudit.js +10 -0
  7. package/src/audit/remoteAudit.js +24 -0
  8. package/src/audit/test/test-currentAudit.js +15 -0
  9. package/src/audit/test/test-getDepChain.js +13 -0
  10. package/src/audit/test/test-index.js +17 -0
  11. package/src/audit/test/test-normalizeAuditResult.js +18 -0
  12. package/src/audit/test/test-npmAudit.js +15 -0
  13. package/src/audit/test/test-remoteAudit.js +15 -0
  14. package/src/audit/test/workdir/audit.json +2130 -0
  15. package/src/audit/test/workdir/current.json +10 -0
  16. package/src/audit/test/workdir/index.json +2398 -0
  17. package/src/audit/test/workdir/normalized.json +2581 -0
  18. package/src/audit/test/workdir/package-lock.json +16137 -0
  19. package/src/audit/test/workdir/package.json +1 -0
  20. package/src/audit/test/workdir/remote.json +75 -0
  21. package/src/common/utils.js +35 -0
  22. package/src/entry/index.js +28 -0
  23. package/src/entry/test/result/result-local.md +1177 -0
  24. package/src/entry/test/result/result-remote.md +151 -0
  25. package/src/entry/test/test-index.js +15 -0
  26. package/src/generateLock/generateLock.js +27 -0
  27. package/src/generateLock/index.js +1 -0
  28. package/src/generateLock/test/1.json +1 -0
  29. package/src/generateLock/test/test.js +15 -0
  30. package/src/generateLock/test/workdir/package-lock.json +16137 -0
  31. package/src/generateLock/test/workdir/package.json +1 -0
  32. package/src/main/index.js +23 -0
  33. package/src/mcpServer.js +43 -0
  34. package/src/parseProject/index.js +18 -0
  35. package/src/parseProject/parseLocalProject.js +8 -0
  36. package/src/parseProject/parseRemoteProject.js +65 -0
  37. package/src/parseProject/test/test.js +26 -0
  38. package/src/render/index.js +24 -0
  39. package/src/render/markdown.js +17 -0
  40. package/src/render/template/audit.ejs +30 -0
  41. package/src/render/template/detail-item.ejs +32 -0
  42. package/src/render/template/detail.ejs +7 -0
  43. package/src/render/template/index.ejs +8 -0
  44. package/src/render/test/test-index.js +27 -0
  45. package/src/render/test/workdir/auditResult.json +2101 -0
  46. package/src/render/test/workdir/index.md +1221 -0
  47. package/src/render/test/workdir/package.json +38 -0
  48. package/src/workDir/index.js +21 -0
package/src/audit/test/workdir/normalized.json ADDED
@@ -0,0 +1,2581 @@
1
+ {
2
+ "vulnerabilities": {
3
+ "critical": [
4
+ {
5
+ "name": "ejs",
6
+ "severity": "critical",
7
+ "problems": [
8
+ {
9
+ "source": 1089270,
10
+ "name": "ejs",
11
+ "dependency": "ejs",
12
+ "title": "ejs template injection vulnerability",
13
+ "url": "https://github.com/advisories/GHSA-phwq-j96m-2c2q",
14
+ "severity": "critical",
15
+ "cwe": [
16
+ "CWE-74"
17
+ ],
18
+ "cvss": {
19
+ "score": 9.8,
20
+ "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H"
21
+ },
22
+ "range": "<3.1.7"
23
+ },
24
+ {
25
+ "source": 1098366,
26
+ "name": "ejs",
27
+ "dependency": "ejs",
28
+ "title": "ejs lacks certain pollution protection",
29
+ "url": "https://github.com/advisories/GHSA-ghr5-ch3p-vcr6",
30
+ "severity": "moderate",
31
+ "cwe": [
32
+ "CWE-693",
33
+ "CWE-1321"
34
+ ],
35
+ "cvss": {
36
+ "score": 4,
37
+ "vectorString": "CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L"
38
+ },
39
+ "range": "<3.1.10"
40
+ }
41
+ ],
42
+ "nodes": [
43
+ "node_modules/ejs"
44
+ ],
45
+ "depChains": [
46
+ [
47
+ "webpack-bundle-analyzer",
48
+ "ejs"
49
+ ]
50
+ ]
51
+ },
52
+ {
53
+ "name": "form-data",
54
+ "severity": "critical",
55
+ "problems": [
56
+ {
57
+ "source": 1106509,
58
+ "name": "form-data",
59
+ "dependency": "form-data",
60
+ "title": "form-data uses unsafe random function in form-data for choosing boundary",
61
+ "url": "https://github.com/advisories/GHSA-fjxv-7rqg-78g4",
62
+ "severity": "critical",
63
+ "cwe": [
64
+ "CWE-330"
65
+ ],
66
+ "cvss": {
67
+ "score": 0,
68
+ "vectorString": null
69
+ },
70
+ "range": "<2.5.4"
71
+ }
72
+ ],
73
+ "nodes": [
74
+ "node_modules/form-data"
75
+ ],
76
+ "depChains": [
77
+ [
78
+ "@vue/cli-plugin-babel",
79
+ "@vue/cli-service",
80
+ "@vue/cli-plugin-router",
81
+ "@vue/cli-shared-utils",
82
+ "request",
83
+ "form-data"
84
+ ],
85
+ [
86
+ "@vue/cli-service",
87
+ "@vue/cli-plugin-router",
88
+ "@vue/cli-shared-utils",
89
+ "request",
90
+ "form-data"
91
+ ],
92
+ [
93
+ "@vue/cli-plugin-vuex",
94
+ "@vue/cli-service",
95
+ "@vue/cli-plugin-router",
96
+ "@vue/cli-shared-utils",
97
+ "request",
98
+ "form-data"
99
+ ]
100
+ ]
101
+ },
102
+ {
103
+ "name": "loader-utils",
104
+ "severity": "critical",
105
+ "problems": [
106
+ {
107
+ "source": 1094088,
108
+ "name": "loader-utils",
109
+ "dependency": "loader-utils",
110
+ "title": "Prototype pollution in webpack loader-utils",
111
+ "url": "https://github.com/advisories/GHSA-76p3-8jx3-jpfq",
112
+ "severity": "critical",
113
+ "cwe": [
114
+ "CWE-1321"
115
+ ],
116
+ "cvss": {
117
+ "score": 9.8,
118
+ "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H"
119
+ },
120
+ "range": "<1.4.1"
121
+ }
122
+ ],
123
+ "nodes": [
124
+ "node_modules/html-webpack-plugin/node_modules/loader-utils"
125
+ ],
126
+ "depChains": [
127
+ [
128
+ "html-webpack-plugin",
129
+ "loader-utils"
130
+ ]
131
+ ]
132
+ },
133
+ {
134
+ "name": "request",
135
+ "severity": "critical",
136
+ "problems": [
137
+ {
138
+ "source": 1096727,
139
+ "name": "request",
140
+ "dependency": "request",
141
+ "title": "Server-Side Request Forgery in Request",
142
+ "url": "https://github.com/advisories/GHSA-p8p7-x288-28g6",
143
+ "severity": "moderate",
144
+ "cwe": [
145
+ "CWE-918"
146
+ ],
147
+ "cvss": {
148
+ "score": 6.1,
149
+ "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N"
150
+ },
151
+ "range": "<=2.88.2"
152
+ }
153
+ ],
154
+ "nodes": [
155
+ "node_modules/request"
156
+ ],
157
+ "depChains": [
158
+ [
159
+ "@vue/cli-plugin-babel",
160
+ "@vue/cli-service",
161
+ "@vue/cli-plugin-router",
162
+ "@vue/cli-shared-utils",
163
+ "request"
164
+ ],
165
+ [
166
+ "@vue/cli-service",
167
+ "@vue/cli-plugin-router",
168
+ "@vue/cli-shared-utils",
169
+ "request"
170
+ ],
171
+ [
172
+ "@vue/cli-plugin-vuex",
173
+ "@vue/cli-service",
174
+ "@vue/cli-plugin-router",
175
+ "@vue/cli-shared-utils",
176
+ "request"
177
+ ]
178
+ ]
179
+ }
180
+ ],
181
+ "high": [
182
+ {
183
+ "name": "axios",
184
+ "severity": "high",
185
+ "problems": [
186
+ {
187
+ "source": 1097679,
188
+ "name": "axios",
189
+ "dependency": "axios",
190
+ "title": "Axios Cross-Site Request Forgery Vulnerability",
191
+ "url": "https://github.com/advisories/GHSA-wf5p-g6vw-rhxx",
192
+ "severity": "moderate",
193
+ "cwe": [
194
+ "CWE-352"
195
+ ],
196
+ "cvss": {
197
+ "score": 6.5,
198
+ "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:N/A:N"
199
+ },
200
+ "range": ">=0.8.1 <0.28.0"
201
+ },
202
+ {
203
+ "source": 1103617,
204
+ "name": "axios",
205
+ "dependency": "axios",
206
+ "title": "axios Requests Vulnerable To Possible SSRF and Credential Leakage via Absolute URL",
207
+ "url": "https://github.com/advisories/GHSA-jr5f-v2jv-69x6",
208
+ "severity": "high",
209
+ "cwe": [
210
+ "CWE-918"
211
+ ],
212
+ "cvss": {
213
+ "score": 0,
214
+ "vectorString": null
215
+ },
216
+ "range": "<0.30.0"
217
+ }
218
+ ],
219
+ "nodes": [
220
+ "node_modules/axios"
221
+ ],
222
+ "depChains": [
223
+ [
224
+ "axios"
225
+ ]
226
+ ]
227
+ },
228
+ {
229
+ "name": "braces",
230
+ "severity": "high",
231
+ "problems": [
232
+ {
233
+ "source": 1098094,
234
+ "name": "braces",
235
+ "dependency": "braces",
236
+ "title": "Uncontrolled resource consumption in braces",
237
+ "url": "https://github.com/advisories/GHSA-grv7-fg5c-xmjg",
238
+ "severity": "high",
239
+ "cwe": [
240
+ "CWE-400",
241
+ "CWE-1050"
242
+ ],
243
+ "cvss": {
244
+ "score": 7.5,
245
+ "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H"
246
+ },
247
+ "range": "<3.0.3"
248
+ }
249
+ ],
250
+ "nodes": [
251
+ "node_modules/braces"
252
+ ],
253
+ "depChains": [
254
+ [
255
+ "@vue/cli-plugin-babel",
256
+ "@vue/cli-service",
257
+ "@intervolga/optimize-cssnano-plugin",
258
+ "webpack",
259
+ "watchpack",
260
+ "watchpack-chokidar2",
261
+ "chokidar",
262
+ "braces"
263
+ ],
264
+ [
265
+ "@vue/cli-plugin-router",
266
+ "@vue/cli-service",
267
+ "@intervolga/optimize-cssnano-plugin",
268
+ "webpack",
269
+ "watchpack",
270
+ "watchpack-chokidar2",
271
+ "chokidar",
272
+ "braces"
273
+ ],
274
+ [
275
+ "@vue/cli-plugin-vuex",
276
+ "@vue/cli-service",
277
+ "@intervolga/optimize-cssnano-plugin",
278
+ "webpack",
279
+ "watchpack",
280
+ "watchpack-chokidar2",
281
+ "chokidar",
282
+ "braces"
283
+ ],
284
+ [
285
+ "@vue/cli-plugin-babel",
286
+ "webpack",
287
+ "watchpack",
288
+ "watchpack-chokidar2",
289
+ "chokidar",
290
+ "braces"
291
+ ],
292
+ [
293
+ "@vue/cli-plugin-babel",
294
+ "cache-loader",
295
+ "webpack",
296
+ "watchpack",
297
+ "watchpack-chokidar2",
298
+ "chokidar",
299
+ "braces"
300
+ ],
301
+ [
302
+ "@vue/cli-plugin-babel",
303
+ "@vue/cli-service",
304
+ "cache-loader",
305
+ "webpack",
306
+ "watchpack",
307
+ "watchpack-chokidar2",
308
+ "chokidar",
309
+ "braces"
310
+ ],
311
+ [
312
+ "@vue/cli-plugin-router",
313
+ "@vue/cli-service",
314
+ "cache-loader",
315
+ "webpack",
316
+ "watchpack",
317
+ "watchpack-chokidar2",
318
+ "chokidar",
319
+ "braces"
320
+ ],
321
+ [
322
+ "@vue/cli-plugin-vuex",
323
+ "@vue/cli-service",
324
+ "cache-loader",
325
+ "webpack",
326
+ "watchpack",
327
+ "watchpack-chokidar2",
328
+ "chokidar",
329
+ "braces"
330
+ ],
331
+ [
332
+ "@vue/cli-plugin-babel",
333
+ "@vue/cli-service",
334
+ "file-loader",
335
+ "webpack",
336
+ "watchpack",
337
+ "watchpack-chokidar2",
338
+ "chokidar",
339
+ "braces"
340
+ ],
341
+ [
342
+ "@vue/cli-plugin-router",
343
+ "@vue/cli-service",
344
+ "file-loader",
345
+ "webpack",
346
+ "watchpack",
347
+ "watchpack-chokidar2",
348
+ "chokidar",
349
+ "braces"
350
+ ],
351
+ [
352
+ "@vue/cli-plugin-vuex",
353
+ "@vue/cli-service",
354
+ "file-loader",
355
+ "webpack",
356
+ "watchpack",
357
+ "watchpack-chokidar2",
358
+ "chokidar",
359
+ "braces"
360
+ ],
361
+ [
362
+ "mini-css-extract-plugin",
363
+ "webpack",
364
+ "watchpack",
365
+ "watchpack-chokidar2",
366
+ "chokidar",
367
+ "braces"
368
+ ],
369
+ [
370
+ "@vue/cli-plugin-babel",
371
+ "@vue/cli-service",
372
+ "terser-webpack-plugin",
373
+ "webpack",
374
+ "watchpack",
375
+ "watchpack-chokidar2",
376
+ "chokidar",
377
+ "braces"
378
+ ],
379
+ [
380
+ "@vue/cli-plugin-router",
381
+ "@vue/cli-service",
382
+ "terser-webpack-plugin",
383
+ "webpack",
384
+ "watchpack",
385
+ "watchpack-chokidar2",
386
+ "chokidar",
387
+ "braces"
388
+ ],
389
+ [
390
+ "@vue/cli-plugin-vuex",
391
+ "@vue/cli-service",
392
+ "terser-webpack-plugin",
393
+ "webpack",
394
+ "watchpack",
395
+ "watchpack-chokidar2",
396
+ "chokidar",
397
+ "braces"
398
+ ],
399
+ [
400
+ "terser-webpack-plugin",
401
+ "webpack",
402
+ "watchpack",
403
+ "watchpack-chokidar2",
404
+ "chokidar",
405
+ "braces"
406
+ ],
407
+ [
408
+ "@vue/cli-plugin-babel",
409
+ "@vue/cli-service",
410
+ "url-loader",
411
+ "webpack",
412
+ "watchpack",
413
+ "watchpack-chokidar2",
414
+ "chokidar",
415
+ "braces"
416
+ ],
417
+ [
418
+ "@vue/cli-plugin-router",
419
+ "@vue/cli-service",
420
+ "url-loader",
421
+ "webpack",
422
+ "watchpack",
423
+ "watchpack-chokidar2",
424
+ "chokidar",
425
+ "braces"
426
+ ],
427
+ [
428
+ "@vue/cli-plugin-vuex",
429
+ "@vue/cli-service",
430
+ "url-loader",
431
+ "webpack",
432
+ "watchpack",
433
+ "watchpack-chokidar2",
434
+ "chokidar",
435
+ "braces"
436
+ ],
437
+ [
438
+ "webpack-dev-server",
439
+ "chokidar",
440
+ "braces"
441
+ ],
442
+ [
443
+ "@vue/cli-plugin-babel",
444
+ "@vue/cli-service",
445
+ "@intervolga/optimize-cssnano-plugin",
446
+ "webpack",
447
+ "watchpack",
448
+ "watchpack-chokidar2",
449
+ "chokidar",
450
+ "anymatch",
451
+ "micromatch",
452
+ "braces"
453
+ ],
454
+ [
455
+ "@vue/cli-plugin-router",
456
+ "@vue/cli-service",
457
+ "@intervolga/optimize-cssnano-plugin",
458
+ "webpack",
459
+ "watchpack",
460
+ "watchpack-chokidar2",
461
+ "chokidar",
462
+ "anymatch",
463
+ "micromatch",
464
+ "braces"
465
+ ],
466
+ [
467
+ "@vue/cli-plugin-vuex",
468
+ "@vue/cli-service",
469
+ "@intervolga/optimize-cssnano-plugin",
470
+ "webpack",
471
+ "watchpack",
472
+ "watchpack-chokidar2",
473
+ "chokidar",
474
+ "anymatch",
475
+ "micromatch",
476
+ "braces"
477
+ ],
478
+ [
479
+ "@vue/cli-plugin-babel",
480
+ "webpack",
481
+ "watchpack",
482
+ "watchpack-chokidar2",
483
+ "chokidar",
484
+ "anymatch",
485
+ "micromatch",
486
+ "braces"
487
+ ],
488
+ [
489
+ "@vue/cli-plugin-babel",
490
+ "cache-loader",
491
+ "webpack",
492
+ "watchpack",
493
+ "watchpack-chokidar2",
494
+ "chokidar",
495
+ "anymatch",
496
+ "micromatch",
497
+ "braces"
498
+ ],
499
+ [
500
+ "@vue/cli-plugin-babel",
501
+ "@vue/cli-service",
502
+ "cache-loader",
503
+ "webpack",
504
+ "watchpack",
505
+ "watchpack-chokidar2",
506
+ "chokidar",
507
+ "anymatch",
508
+ "micromatch",
509
+ "braces"
510
+ ],
511
+ [
512
+ "@vue/cli-plugin-router",
513
+ "@vue/cli-service",
514
+ "cache-loader",
515
+ "webpack",
516
+ "watchpack",
517
+ "watchpack-chokidar2",
518
+ "chokidar",
519
+ "anymatch",
520
+ "micromatch",
521
+ "braces"
522
+ ],
523
+ [
524
+ "@vue/cli-plugin-vuex",
525
+ "@vue/cli-service",
526
+ "cache-loader",
527
+ "webpack",
528
+ "watchpack",
529
+ "watchpack-chokidar2",
530
+ "chokidar",
531
+ "anymatch",
532
+ "micromatch",
533
+ "braces"
534
+ ],
535
+ [
536
+ "@vue/cli-plugin-babel",
537
+ "@vue/cli-service",
538
+ "file-loader",
539
+ "webpack",
540
+ "watchpack",
541
+ "watchpack-chokidar2",
542
+ "chokidar",
543
+ "anymatch",
544
+ "micromatch",
545
+ "braces"
546
+ ],
547
+ [
548
+ "@vue/cli-plugin-router",
549
+ "@vue/cli-service",
550
+ "file-loader",
551
+ "webpack",
552
+ "watchpack",
553
+ "watchpack-chokidar2",
554
+ "chokidar",
555
+ "anymatch",
556
+ "micromatch",
557
+ "braces"
558
+ ],
559
+ [
560
+ "@vue/cli-plugin-vuex",
561
+ "@vue/cli-service",
562
+ "file-loader",
563
+ "webpack",
564
+ "watchpack",
565
+ "watchpack-chokidar2",
566
+ "chokidar",
567
+ "anymatch",
568
+ "micromatch",
569
+ "braces"
570
+ ],
571
+ [
572
+ "mini-css-extract-plugin",
573
+ "webpack",
574
+ "watchpack",
575
+ "watchpack-chokidar2",
576
+ "chokidar",
577
+ "anymatch",
578
+ "micromatch",
579
+ "braces"
580
+ ],
581
+ [
582
+ "@vue/cli-plugin-babel",
583
+ "@vue/cli-service",
584
+ "terser-webpack-plugin",
585
+ "webpack",
586
+ "watchpack",
587
+ "watchpack-chokidar2",
588
+ "chokidar",
589
+ "anymatch",
590
+ "micromatch",
591
+ "braces"
592
+ ],
593
+ [
594
+ "@vue/cli-plugin-router",
595
+ "@vue/cli-service",
596
+ "terser-webpack-plugin",
597
+ "webpack",
598
+ "watchpack",
599
+ "watchpack-chokidar2",
600
+ "chokidar",
601
+ "anymatch",
602
+ "micromatch",
603
+ "braces"
604
+ ],
605
+ [
606
+ "@vue/cli-plugin-vuex",
607
+ "@vue/cli-service",
608
+ "terser-webpack-plugin",
609
+ "webpack",
610
+ "watchpack",
611
+ "watchpack-chokidar2",
612
+ "chokidar",
613
+ "anymatch",
614
+ "micromatch",
615
+ "braces"
616
+ ],
617
+ [
618
+ "terser-webpack-plugin",
619
+ "webpack",
620
+ "watchpack",
621
+ "watchpack-chokidar2",
622
+ "chokidar",
623
+ "anymatch",
624
+ "micromatch",
625
+ "braces"
626
+ ],
627
+ [
628
+ "@vue/cli-plugin-babel",
629
+ "@vue/cli-service",
630
+ "url-loader",
631
+ "webpack",
632
+ "watchpack",
633
+ "watchpack-chokidar2",
634
+ "chokidar",
635
+ "anymatch",
636
+ "micromatch",
637
+ "braces"
638
+ ],
639
+ [
640
+ "@vue/cli-plugin-router",
641
+ "@vue/cli-service",
642
+ "url-loader",
643
+ "webpack",
644
+ "watchpack",
645
+ "watchpack-chokidar2",
646
+ "chokidar",
647
+ "anymatch",
648
+ "micromatch",
649
+ "braces"
650
+ ],
651
+ [
652
+ "@vue/cli-plugin-vuex",
653
+ "@vue/cli-service",
654
+ "url-loader",
655
+ "webpack",
656
+ "watchpack",
657
+ "watchpack-chokidar2",
658
+ "chokidar",
659
+ "anymatch",
660
+ "micromatch",
661
+ "braces"
662
+ ],
663
+ [
664
+ "webpack-dev-server",
665
+ "chokidar",
666
+ "anymatch",
667
+ "micromatch",
668
+ "braces"
669
+ ],
670
+ [
671
+ "globby",
672
+ "fast-glob",
673
+ "micromatch",
674
+ "braces"
675
+ ],
676
+ [
677
+ "@types/webpack-dev-server",
678
+ "http-proxy-middleware",
679
+ "micromatch",
680
+ "braces"
681
+ ],
682
+ [
683
+ "webpack-dev-server",
684
+ "http-proxy-middleware",
685
+ "micromatch",
686
+ "braces"
687
+ ],
688
+ [
689
+ "@vue/cli-plugin-babel",
690
+ "@vue/cli-service",
691
+ "@intervolga/optimize-cssnano-plugin",
692
+ "webpack",
693
+ "watchpack",
694
+ "watchpack-chokidar2",
695
+ "chokidar",
696
+ "readdirp",
697
+ "micromatch",
698
+ "braces"
699
+ ],
700
+ [
701
+ "@vue/cli-plugin-router",
702
+ "@vue/cli-service",
703
+ "@intervolga/optimize-cssnano-plugin",
704
+ "webpack",
705
+ "watchpack",
706
+ "watchpack-chokidar2",
707
+ "chokidar",
708
+ "readdirp",
709
+ "micromatch",
710
+ "braces"
711
+ ],
712
+ [
713
+ "@vue/cli-plugin-vuex",
714
+ "@vue/cli-service",
715
+ "@intervolga/optimize-cssnano-plugin",
716
+ "webpack",
717
+ "watchpack",
718
+ "watchpack-chokidar2",
719
+ "chokidar",
720
+ "readdirp",
721
+ "micromatch",
722
+ "braces"
723
+ ],
724
+ [
725
+ "@vue/cli-plugin-babel",
726
+ "webpack",
727
+ "watchpack",
728
+ "watchpack-chokidar2",
729
+ "chokidar",
730
+ "readdirp",
731
+ "micromatch",
732
+ "braces"
733
+ ],
734
+ [
735
+ "@vue/cli-plugin-babel",
736
+ "cache-loader",
737
+ "webpack",
738
+ "watchpack",
739
+ "watchpack-chokidar2",
740
+ "chokidar",
741
+ "readdirp",
742
+ "micromatch",
743
+ "braces"
744
+ ],
745
+ [
746
+ "@vue/cli-plugin-babel",
747
+ "@vue/cli-service",
748
+ "cache-loader",
749
+ "webpack",
750
+ "watchpack",
751
+ "watchpack-chokidar2",
752
+ "chokidar",
753
+ "readdirp",
754
+ "micromatch",
755
+ "braces"
756
+ ],
757
+ [
758
+ "@vue/cli-plugin-router",
759
+ "@vue/cli-service",
760
+ "cache-loader",
761
+ "webpack",
762
+ "watchpack",
763
+ "watchpack-chokidar2",
764
+ "chokidar",
765
+ "readdirp",
766
+ "micromatch",
767
+ "braces"
768
+ ],
769
+ [
770
+ "@vue/cli-plugin-vuex",
771
+ "@vue/cli-service",
772
+ "cache-loader",
773
+ "webpack",
774
+ "watchpack",
775
+ "watchpack-chokidar2",
776
+ "chokidar",
777
+ "readdirp",
778
+ "micromatch",
779
+ "braces"
780
+ ],
781
+ [
782
+ "@vue/cli-plugin-babel",
783
+ "@vue/cli-service",
784
+ "file-loader",
785
+ "webpack",
786
+ "watchpack",
787
+ "watchpack-chokidar2",
788
+ "chokidar",
789
+ "readdirp",
790
+ "micromatch",
791
+ "braces"
792
+ ],
793
+ [
794
+ "@vue/cli-plugin-router",
795
+ "@vue/cli-service",
796
+ "file-loader",
797
+ "webpack",
798
+ "watchpack",
799
+ "watchpack-chokidar2",
800
+ "chokidar",
801
+ "readdirp",
802
+ "micromatch",
803
+ "braces"
804
+ ],
805
+ [
806
+ "@vue/cli-plugin-vuex",
807
+ "@vue/cli-service",
808
+ "file-loader",
809
+ "webpack",
810
+ "watchpack",
811
+ "watchpack-chokidar2",
812
+ "chokidar",
813
+ "readdirp",
814
+ "micromatch",
815
+ "braces"
816
+ ],
817
+ [
818
+ "mini-css-extract-plugin",
819
+ "webpack",
820
+ "watchpack",
821
+ "watchpack-chokidar2",
822
+ "chokidar",
823
+ "readdirp",
824
+ "micromatch",
825
+ "braces"
826
+ ],
827
+ [
828
+ "@vue/cli-plugin-babel",
829
+ "@vue/cli-service",
830
+ "terser-webpack-plugin",
831
+ "webpack",
832
+ "watchpack",
833
+ "watchpack-chokidar2",
834
+ "chokidar",
835
+ "readdirp",
836
+ "micromatch",
837
+ "braces"
838
+ ],
839
+ [
840
+ "@vue/cli-plugin-router",
841
+ "@vue/cli-service",
842
+ "terser-webpack-plugin",
843
+ "webpack",
844
+ "watchpack",
845
+ "watchpack-chokidar2",
846
+ "chokidar",
847
+ "readdirp",
848
+ "micromatch",
849
+ "braces"
850
+ ],
851
+ [
852
+ "@vue/cli-plugin-vuex",
853
+ "@vue/cli-service",
854
+ "terser-webpack-plugin",
855
+ "webpack",
856
+ "watchpack",
857
+ "watchpack-chokidar2",
858
+ "chokidar",
859
+ "readdirp",
860
+ "micromatch",
861
+ "braces"
862
+ ],
863
+ [
864
+ "terser-webpack-plugin",
865
+ "webpack",
866
+ "watchpack",
867
+ "watchpack-chokidar2",
868
+ "chokidar",
869
+ "readdirp",
870
+ "micromatch",
871
+ "braces"
872
+ ],
873
+ [
874
+ "@vue/cli-plugin-babel",
875
+ "@vue/cli-service",
876
+ "url-loader",
877
+ "webpack",
878
+ "watchpack",
879
+ "watchpack-chokidar2",
880
+ "chokidar",
881
+ "readdirp",
882
+ "micromatch",
883
+ "braces"
884
+ ],
885
+ [
886
+ "@vue/cli-plugin-router",
887
+ "@vue/cli-service",
888
+ "url-loader",
889
+ "webpack",
890
+ "watchpack",
891
+ "watchpack-chokidar2",
892
+ "chokidar",
893
+ "readdirp",
894
+ "micromatch",
895
+ "braces"
896
+ ],
897
+ [
898
+ "@vue/cli-plugin-vuex",
899
+ "@vue/cli-service",
900
+ "url-loader",
901
+ "webpack",
902
+ "watchpack",
903
+ "watchpack-chokidar2",
904
+ "chokidar",
905
+ "readdirp",
906
+ "micromatch",
907
+ "braces"
908
+ ],
909
+ [
910
+ "webpack-dev-server",
911
+ "chokidar",
912
+ "readdirp",
913
+ "micromatch",
914
+ "braces"
915
+ ],
916
+ [
917
+ "@vue/cli-plugin-babel",
918
+ "@vue/cli-service",
919
+ "@intervolga/optimize-cssnano-plugin",
920
+ "webpack",
921
+ "micromatch",
922
+ "braces"
923
+ ],
924
+ [
925
+ "@vue/cli-plugin-router",
926
+ "@vue/cli-service",
927
+ "@intervolga/optimize-cssnano-plugin",
928
+ "webpack",
929
+ "micromatch",
930
+ "braces"
931
+ ],
932
+ [
933
+ "@vue/cli-plugin-vuex",
934
+ "@vue/cli-service",
935
+ "@intervolga/optimize-cssnano-plugin",
936
+ "webpack",
937
+ "micromatch",
938
+ "braces"
939
+ ],
940
+ [
941
+ "@vue/cli-plugin-babel",
942
+ "webpack",
943
+ "micromatch",
944
+ "braces"
945
+ ],
946
+ [
947
+ "@vue/cli-plugin-babel",
948
+ "cache-loader",
949
+ "webpack",
950
+ "micromatch",
951
+ "braces"
952
+ ],
953
+ [
954
+ "@vue/cli-plugin-babel",
955
+ "@vue/cli-service",
956
+ "cache-loader",
957
+ "webpack",
958
+ "micromatch",
959
+ "braces"
960
+ ],
961
+ [
962
+ "@vue/cli-plugin-router",
963
+ "@vue/cli-service",
964
+ "cache-loader",
965
+ "webpack",
966
+ "micromatch",
967
+ "braces"
968
+ ],
969
+ [
970
+ "@vue/cli-plugin-vuex",
971
+ "@vue/cli-service",
972
+ "cache-loader",
973
+ "webpack",
974
+ "micromatch",
975
+ "braces"
976
+ ],
977
+ [
978
+ "@vue/cli-plugin-babel",
979
+ "@vue/cli-service",
980
+ "file-loader",
981
+ "webpack",
982
+ "micromatch",
983
+ "braces"
984
+ ],
985
+ [
986
+ "@vue/cli-plugin-router",
987
+ "@vue/cli-service",
988
+ "file-loader",
989
+ "webpack",
990
+ "micromatch",
991
+ "braces"
992
+ ],
993
+ [
994
+ "@vue/cli-plugin-vuex",
995
+ "@vue/cli-service",
996
+ "file-loader",
997
+ "webpack",
998
+ "micromatch",
999
+ "braces"
1000
+ ],
1001
+ [
1002
+ "mini-css-extract-plugin",
1003
+ "webpack",
1004
+ "micromatch",
1005
+ "braces"
1006
+ ],
1007
+ [
1008
+ "@vue/cli-plugin-babel",
1009
+ "@vue/cli-service",
1010
+ "terser-webpack-plugin",
1011
+ "webpack",
1012
+ "micromatch",
1013
+ "braces"
1014
+ ],
1015
+ [
1016
+ "@vue/cli-plugin-router",
1017
+ "@vue/cli-service",
1018
+ "terser-webpack-plugin",
1019
+ "webpack",
1020
+ "micromatch",
1021
+ "braces"
1022
+ ],
1023
+ [
1024
+ "@vue/cli-plugin-vuex",
1025
+ "@vue/cli-service",
1026
+ "terser-webpack-plugin",
1027
+ "webpack",
1028
+ "micromatch",
1029
+ "braces"
1030
+ ],
1031
+ [
1032
+ "terser-webpack-plugin",
1033
+ "webpack",
1034
+ "micromatch",
1035
+ "braces"
1036
+ ],
1037
+ [
1038
+ "@vue/cli-plugin-babel",
1039
+ "@vue/cli-service",
1040
+ "url-loader",
1041
+ "webpack",
1042
+ "micromatch",
1043
+ "braces"
1044
+ ],
1045
+ [
1046
+ "@vue/cli-plugin-router",
1047
+ "@vue/cli-service",
1048
+ "url-loader",
1049
+ "webpack",
1050
+ "micromatch",
1051
+ "braces"
1052
+ ],
1053
+ [
1054
+ "@vue/cli-plugin-vuex",
1055
+ "@vue/cli-service",
1056
+ "url-loader",
1057
+ "webpack",
1058
+ "micromatch",
1059
+ "braces"
1060
+ ]
1061
+ ]
1062
+ },
1063
+ {
1064
+ "name": "html-minifier",
1065
+ "severity": "high",
1066
+ "problems": [
1067
+ {
1068
+ "source": 1105440,
1069
+ "name": "html-minifier",
1070
+ "dependency": "html-minifier",
1071
+ "title": "kangax html-minifier REDoS vulnerability",
1072
+ "url": "https://github.com/advisories/GHSA-pfq8-rq6v-vf5m",
1073
+ "severity": "high",
1074
+ "cwe": [
1075
+ "CWE-400",
1076
+ "CWE-1333"
1077
+ ],
1078
+ "cvss": {
1079
+ "score": 7.5,
1080
+ "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H"
1081
+ },
1082
+ "range": "<=4.0.0"
1083
+ }
1084
+ ],
1085
+ "nodes": [
1086
+ "node_modules/html-minifier"
1087
+ ],
1088
+ "depChains": [
1089
+ [
1090
+ "html-webpack-plugin",
1091
+ "html-minifier"
1092
+ ]
1093
+ ]
1094
+ },
1095
+ {
1096
+ "name": "http-proxy-middleware",
1097
+ "severity": "high",
1098
+ "problems": [
1099
+ {
1100
+ "source": 1100223,
1101
+ "name": "http-proxy-middleware",
1102
+ "dependency": "http-proxy-middleware",
1103
+ "title": "Denial of service in http-proxy-middleware",
1104
+ "url": "https://github.com/advisories/GHSA-c7qv-q95q-8v27",
1105
+ "severity": "high",
1106
+ "cwe": [
1107
+ "CWE-400"
1108
+ ],
1109
+ "cvss": {
1110
+ "score": 7.5,
1111
+ "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H"
1112
+ },
1113
+ "range": "<2.0.7"
1114
+ },
1115
+ {
1116
+ "source": 1104105,
1117
+ "name": "http-proxy-middleware",
1118
+ "dependency": "http-proxy-middleware",
1119
+ "title": "http-proxy-middleware allows fixRequestBody to proceed even if bodyParser has failed",
1120
+ "url": "https://github.com/advisories/GHSA-9gqv-wp59-fq42",
1121
+ "severity": "moderate",
1122
+ "cwe": [
1123
+ "CWE-754"
1124
+ ],
1125
+ "cvss": {
1126
+ "score": 4,
1127
+ "vectorString": "CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:C/C:N/I:L/A:N"
1128
+ },
1129
+ "range": ">=1.3.0 <2.0.9"
1130
+ },
1131
+ {
1132
+ "source": 1104106,
1133
+ "name": "http-proxy-middleware",
1134
+ "dependency": "http-proxy-middleware",
1135
+ "title": "http-proxy-middleware can call writeBody twice because \"else if\" is not used",
1136
+ "url": "https://github.com/advisories/GHSA-4www-5p9h-95mh",
1137
+ "severity": "moderate",
1138
+ "cwe": [
1139
+ "CWE-670"
1140
+ ],
1141
+ "cvss": {
1142
+ "score": 4,
1143
+ "vectorString": "CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:C/C:N/I:N/A:L"
1144
+ },
1145
+ "range": ">=1.3.0 <2.0.8"
1146
+ }
1147
+ ],
1148
+ "nodes": [
1149
+ "node_modules/http-proxy-middleware",
1150
+ "node_modules/webpack-dev-server/node_modules/http-proxy-middleware"
1151
+ ],
1152
+ "depChains": [
1153
+ [
1154
+ "@types/webpack-dev-server",
1155
+ "http-proxy-middleware"
1156
+ ],
1157
+ [
1158
+ "webpack-dev-server",
1159
+ "http-proxy-middleware"
1160
+ ]
1161
+ ]
1162
+ },
1163
+ {
1164
+ "name": "ip",
1165
+ "severity": "high",
1166
+ "problems": [
1167
+ {
1168
+ "source": 1101851,
1169
+ "name": "ip",
1170
+ "dependency": "ip",
1171
+ "title": "ip SSRF improper categorization in isPublic",
1172
+ "url": "https://github.com/advisories/GHSA-2p57-rm9w-gvfp",
1173
+ "severity": "high",
1174
+ "cwe": [
1175
+ "CWE-918"
1176
+ ],
1177
+ "cvss": {
1178
+ "score": 8.1,
1179
+ "vectorString": "CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H"
1180
+ },
1181
+ "range": "<=2.0.1"
1182
+ }
1183
+ ],
1184
+ "nodes": [
1185
+ "node_modules/ip"
1186
+ ],
1187
+ "depChains": [
1188
+ [
1189
+ "webpack-dev-server",
1190
+ "bonjour",
1191
+ "multicast-dns",
1192
+ "dns-packet",
1193
+ "ip"
1194
+ ],
1195
+ [
1196
+ "webpack-dev-server",
1197
+ "ip"
1198
+ ]
1199
+ ]
1200
+ },
1201
+ {
1202
+ "name": "json5",
1203
+ "severity": "high",
1204
+ "problems": [
1205
+ {
1206
+ "source": 1096543,
1207
+ "name": "json5",
1208
+ "dependency": "json5",
1209
+ "title": "Prototype Pollution in JSON5 via Parse Method",
1210
+ "url": "https://github.com/advisories/GHSA-9c47-m6qq-7p4h",
1211
+ "severity": "high",
1212
+ "cwe": [
1213
+ "CWE-1321"
1214
+ ],
1215
+ "cvss": {
1216
+ "score": 7.1,
1217
+ "vectorString": "CVSS:3.1/AV:N/AC:H/PR:L/UI:N/S:U/C:H/I:L/A:H"
1218
+ },
1219
+ "range": "<1.0.2"
1220
+ }
1221
+ ],
1222
+ "nodes": [
1223
+ "node_modules/html-webpack-plugin/node_modules/json5"
1224
+ ],
1225
+ "depChains": [
1226
+ [
1227
+ "html-webpack-plugin",
1228
+ "loader-utils",
1229
+ "json5"
1230
+ ]
1231
+ ]
1232
+ },
1233
+ {
1234
+ "name": "micromatch",
1235
+ "severity": "high",
1236
+ "problems": [
1237
+ {
1238
+ "source": 1098681,
1239
+ "name": "micromatch",
1240
+ "dependency": "micromatch",
1241
+ "title": "Regular Expression Denial of Service (ReDoS) in micromatch",
1242
+ "url": "https://github.com/advisories/GHSA-952p-6rrq-rcjv",
1243
+ "severity": "moderate",
1244
+ "cwe": [
1245
+ "CWE-1333"
1246
+ ],
1247
+ "cvss": {
1248
+ "score": 5.3,
1249
+ "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L"
1250
+ },
1251
+ "range": "<4.0.8"
1252
+ }
1253
+ ],
1254
+ "nodes": [
1255
+ "node_modules/micromatch"
1256
+ ],
1257
+ "depChains": [
1258
+ [
1259
+ "@vue/cli-plugin-babel",
1260
+ "@vue/cli-service",
1261
+ "@intervolga/optimize-cssnano-plugin",
1262
+ "webpack",
1263
+ "watchpack",
1264
+ "watchpack-chokidar2",
1265
+ "chokidar",
1266
+ "anymatch",
1267
+ "micromatch"
1268
+ ],
1269
+ [
1270
+ "@vue/cli-plugin-router",
1271
+ "@vue/cli-service",
1272
+ "@intervolga/optimize-cssnano-plugin",
1273
+ "webpack",
1274
+ "watchpack",
1275
+ "watchpack-chokidar2",
1276
+ "chokidar",
1277
+ "anymatch",
1278
+ "micromatch"
1279
+ ],
1280
+ [
1281
+ "@vue/cli-plugin-vuex",
1282
+ "@vue/cli-service",
1283
+ "@intervolga/optimize-cssnano-plugin",
1284
+ "webpack",
1285
+ "watchpack",
1286
+ "watchpack-chokidar2",
1287
+ "chokidar",
1288
+ "anymatch",
1289
+ "micromatch"
1290
+ ],
1291
+ [
1292
+ "@vue/cli-plugin-babel",
1293
+ "webpack",
1294
+ "watchpack",
1295
+ "watchpack-chokidar2",
1296
+ "chokidar",
1297
+ "anymatch",
1298
+ "micromatch"
1299
+ ],
1300
+ [
1301
+ "@vue/cli-plugin-babel",
1302
+ "cache-loader",
1303
+ "webpack",
1304
+ "watchpack",
1305
+ "watchpack-chokidar2",
1306
+ "chokidar",
1307
+ "anymatch",
1308
+ "micromatch"
1309
+ ],
1310
+ [
1311
+ "@vue/cli-plugin-babel",
1312
+ "@vue/cli-service",
1313
+ "cache-loader",
1314
+ "webpack",
1315
+ "watchpack",
1316
+ "watchpack-chokidar2",
1317
+ "chokidar",
1318
+ "anymatch",
1319
+ "micromatch"
1320
+ ],
1321
+ [
1322
+ "@vue/cli-plugin-router",
1323
+ "@vue/cli-service",
1324
+ "cache-loader",
1325
+ "webpack",
1326
+ "watchpack",
1327
+ "watchpack-chokidar2",
1328
+ "chokidar",
1329
+ "anymatch",
1330
+ "micromatch"
1331
+ ],
1332
+ [
1333
+ "@vue/cli-plugin-vuex",
1334
+ "@vue/cli-service",
1335
+ "cache-loader",
1336
+ "webpack",
1337
+ "watchpack",
1338
+ "watchpack-chokidar2",
1339
+ "chokidar",
1340
+ "anymatch",
1341
+ "micromatch"
1342
+ ],
1343
+ [
1344
+ "@vue/cli-plugin-babel",
1345
+ "@vue/cli-service",
1346
+ "file-loader",
1347
+ "webpack",
1348
+ "watchpack",
1349
+ "watchpack-chokidar2",
1350
+ "chokidar",
1351
+ "anymatch",
1352
+ "micromatch"
1353
+ ],
1354
+ [
1355
+ "@vue/cli-plugin-router",
1356
+ "@vue/cli-service",
1357
+ "file-loader",
1358
+ "webpack",
1359
+ "watchpack",
1360
+ "watchpack-chokidar2",
1361
+ "chokidar",
1362
+ "anymatch",
1363
+ "micromatch"
1364
+ ],
1365
+ [
1366
+ "@vue/cli-plugin-vuex",
1367
+ "@vue/cli-service",
1368
+ "file-loader",
1369
+ "webpack",
1370
+ "watchpack",
1371
+ "watchpack-chokidar2",
1372
+ "chokidar",
1373
+ "anymatch",
1374
+ "micromatch"
1375
+ ],
1376
+ [
1377
+ "mini-css-extract-plugin",
1378
+ "webpack",
1379
+ "watchpack",
1380
+ "watchpack-chokidar2",
1381
+ "chokidar",
1382
+ "anymatch",
1383
+ "micromatch"
1384
+ ],
1385
+ [
1386
+ "@vue/cli-plugin-babel",
1387
+ "@vue/cli-service",
1388
+ "terser-webpack-plugin",
1389
+ "webpack",
1390
+ "watchpack",
1391
+ "watchpack-chokidar2",
1392
+ "chokidar",
1393
+ "anymatch",
1394
+ "micromatch"
1395
+ ],
1396
+ [
1397
+ "@vue/cli-plugin-router",
1398
+ "@vue/cli-service",
1399
+ "terser-webpack-plugin",
1400
+ "webpack",
1401
+ "watchpack",
1402
+ "watchpack-chokidar2",
1403
+ "chokidar",
1404
+ "anymatch",
1405
+ "micromatch"
1406
+ ],
1407
+ [
1408
+ "@vue/cli-plugin-vuex",
1409
+ "@vue/cli-service",
1410
+ "terser-webpack-plugin",
1411
+ "webpack",
1412
+ "watchpack",
1413
+ "watchpack-chokidar2",
1414
+ "chokidar",
1415
+ "anymatch",
1416
+ "micromatch"
1417
+ ],
1418
+ [
1419
+ "terser-webpack-plugin",
1420
+ "webpack",
1421
+ "watchpack",
1422
+ "watchpack-chokidar2",
1423
+ "chokidar",
1424
+ "anymatch",
1425
+ "micromatch"
1426
+ ],
1427
+ [
1428
+ "@vue/cli-plugin-babel",
1429
+ "@vue/cli-service",
1430
+ "url-loader",
1431
+ "webpack",
1432
+ "watchpack",
1433
+ "watchpack-chokidar2",
1434
+ "chokidar",
1435
+ "anymatch",
1436
+ "micromatch"
1437
+ ],
1438
+ [
1439
+ "@vue/cli-plugin-router",
1440
+ "@vue/cli-service",
1441
+ "url-loader",
1442
+ "webpack",
1443
+ "watchpack",
1444
+ "watchpack-chokidar2",
1445
+ "chokidar",
1446
+ "anymatch",
1447
+ "micromatch"
1448
+ ],
1449
+ [
1450
+ "@vue/cli-plugin-vuex",
1451
+ "@vue/cli-service",
1452
+ "url-loader",
1453
+ "webpack",
1454
+ "watchpack",
1455
+ "watchpack-chokidar2",
1456
+ "chokidar",
1457
+ "anymatch",
1458
+ "micromatch"
1459
+ ],
1460
+ [
1461
+ "webpack-dev-server",
1462
+ "chokidar",
1463
+ "anymatch",
1464
+ "micromatch"
1465
+ ],
1466
+ [
1467
+ "globby",
1468
+ "fast-glob",
1469
+ "micromatch"
1470
+ ],
1471
+ [
1472
+ "@types/webpack-dev-server",
1473
+ "http-proxy-middleware",
1474
+ "micromatch"
1475
+ ],
1476
+ [
1477
+ "webpack-dev-server",
1478
+ "http-proxy-middleware",
1479
+ "micromatch"
1480
+ ],
1481
+ [
1482
+ "@vue/cli-plugin-babel",
1483
+ "@vue/cli-service",
1484
+ "@intervolga/optimize-cssnano-plugin",
1485
+ "webpack",
1486
+ "watchpack",
1487
+ "watchpack-chokidar2",
1488
+ "chokidar",
1489
+ "readdirp",
1490
+ "micromatch"
1491
+ ],
1492
+ [
1493
+ "@vue/cli-plugin-router",
1494
+ "@vue/cli-service",
1495
+ "@intervolga/optimize-cssnano-plugin",
1496
+ "webpack",
1497
+ "watchpack",
1498
+ "watchpack-chokidar2",
1499
+ "chokidar",
1500
+ "readdirp",
1501
+ "micromatch"
1502
+ ],
1503
+ [
1504
+ "@vue/cli-plugin-vuex",
1505
+ "@vue/cli-service",
1506
+ "@intervolga/optimize-cssnano-plugin",
1507
+ "webpack",
1508
+ "watchpack",
1509
+ "watchpack-chokidar2",
1510
+ "chokidar",
1511
+ "readdirp",
1512
+ "micromatch"
1513
+ ],
1514
+ [
1515
+ "@vue/cli-plugin-babel",
1516
+ "webpack",
1517
+ "watchpack",
1518
+ "watchpack-chokidar2",
1519
+ "chokidar",
1520
+ "readdirp",
1521
+ "micromatch"
1522
+ ],
1523
+ [
1524
+ "@vue/cli-plugin-babel",
1525
+ "cache-loader",
1526
+ "webpack",
1527
+ "watchpack",
1528
+ "watchpack-chokidar2",
1529
+ "chokidar",
1530
+ "readdirp",
1531
+ "micromatch"
1532
+ ],
1533
+ [
1534
+ "@vue/cli-plugin-babel",
1535
+ "@vue/cli-service",
1536
+ "cache-loader",
1537
+ "webpack",
1538
+ "watchpack",
1539
+ "watchpack-chokidar2",
1540
+ "chokidar",
1541
+ "readdirp",
1542
+ "micromatch"
1543
+ ],
1544
+ [
1545
+ "@vue/cli-plugin-router",
1546
+ "@vue/cli-service",
1547
+ "cache-loader",
1548
+ "webpack",
1549
+ "watchpack",
1550
+ "watchpack-chokidar2",
1551
+ "chokidar",
1552
+ "readdirp",
1553
+ "micromatch"
1554
+ ],
1555
+ [
1556
+ "@vue/cli-plugin-vuex",
1557
+ "@vue/cli-service",
1558
+ "cache-loader",
1559
+ "webpack",
1560
+ "watchpack",
1561
+ "watchpack-chokidar2",
1562
+ "chokidar",
1563
+ "readdirp",
1564
+ "micromatch"
1565
+ ],
1566
+ [
1567
+ "@vue/cli-plugin-babel",
1568
+ "@vue/cli-service",
1569
+ "file-loader",
1570
+ "webpack",
1571
+ "watchpack",
1572
+ "watchpack-chokidar2",
1573
+ "chokidar",
1574
+ "readdirp",
1575
+ "micromatch"
1576
+ ],
1577
+ [
1578
+ "@vue/cli-plugin-router",
1579
+ "@vue/cli-service",
1580
+ "file-loader",
1581
+ "webpack",
1582
+ "watchpack",
1583
+ "watchpack-chokidar2",
1584
+ "chokidar",
1585
+ "readdirp",
1586
+ "micromatch"
1587
+ ],
1588
+ [
1589
+ "@vue/cli-plugin-vuex",
1590
+ "@vue/cli-service",
1591
+ "file-loader",
1592
+ "webpack",
1593
+ "watchpack",
1594
+ "watchpack-chokidar2",
1595
+ "chokidar",
1596
+ "readdirp",
1597
+ "micromatch"
1598
+ ],
1599
+ [
1600
+ "mini-css-extract-plugin",
1601
+ "webpack",
1602
+ "watchpack",
1603
+ "watchpack-chokidar2",
1604
+ "chokidar",
1605
+ "readdirp",
1606
+ "micromatch"
1607
+ ],
1608
+ [
1609
+ "@vue/cli-plugin-babel",
1610
+ "@vue/cli-service",
1611
+ "terser-webpack-plugin",
1612
+ "webpack",
1613
+ "watchpack",
1614
+ "watchpack-chokidar2",
1615
+ "chokidar",
1616
+ "readdirp",
1617
+ "micromatch"
1618
+ ],
1619
+ [
1620
+ "@vue/cli-plugin-router",
1621
+ "@vue/cli-service",
1622
+ "terser-webpack-plugin",
1623
+ "webpack",
1624
+ "watchpack",
1625
+ "watchpack-chokidar2",
1626
+ "chokidar",
1627
+ "readdirp",
1628
+ "micromatch"
1629
+ ],
1630
+ [
1631
+ "@vue/cli-plugin-vuex",
1632
+ "@vue/cli-service",
1633
+ "terser-webpack-plugin",
1634
+ "webpack",
1635
+ "watchpack",
1636
+ "watchpack-chokidar2",
1637
+ "chokidar",
1638
+ "readdirp",
1639
+ "micromatch"
1640
+ ],
1641
+ [
1642
+ "terser-webpack-plugin",
1643
+ "webpack",
1644
+ "watchpack",
1645
+ "watchpack-chokidar2",
1646
+ "chokidar",
1647
+ "readdirp",
1648
+ "micromatch"
1649
+ ],
1650
+ [
1651
+ "@vue/cli-plugin-babel",
1652
+ "@vue/cli-service",
1653
+ "url-loader",
1654
+ "webpack",
1655
+ "watchpack",
1656
+ "watchpack-chokidar2",
1657
+ "chokidar",
1658
+ "readdirp",
1659
+ "micromatch"
1660
+ ],
1661
+ [
1662
+ "@vue/cli-plugin-router",
1663
+ "@vue/cli-service",
1664
+ "url-loader",
1665
+ "webpack",
1666
+ "watchpack",
1667
+ "watchpack-chokidar2",
1668
+ "chokidar",
1669
+ "readdirp",
1670
+ "micromatch"
1671
+ ],
1672
+ [
1673
+ "@vue/cli-plugin-vuex",
1674
+ "@vue/cli-service",
1675
+ "url-loader",
1676
+ "webpack",
1677
+ "watchpack",
1678
+ "watchpack-chokidar2",
1679
+ "chokidar",
1680
+ "readdirp",
1681
+ "micromatch"
1682
+ ],
1683
+ [
1684
+ "webpack-dev-server",
1685
+ "chokidar",
1686
+ "readdirp",
1687
+ "micromatch"
1688
+ ],
1689
+ [
1690
+ "@vue/cli-plugin-babel",
1691
+ "@vue/cli-service",
1692
+ "@intervolga/optimize-cssnano-plugin",
1693
+ "webpack",
1694
+ "micromatch"
1695
+ ],
1696
+ [
1697
+ "@vue/cli-plugin-router",
1698
+ "@vue/cli-service",
1699
+ "@intervolga/optimize-cssnano-plugin",
1700
+ "webpack",
1701
+ "micromatch"
1702
+ ],
1703
+ [
1704
+ "@vue/cli-plugin-vuex",
1705
+ "@vue/cli-service",
1706
+ "@intervolga/optimize-cssnano-plugin",
1707
+ "webpack",
1708
+ "micromatch"
1709
+ ],
1710
+ [
1711
+ "@vue/cli-plugin-babel",
1712
+ "webpack",
1713
+ "micromatch"
1714
+ ],
1715
+ [
1716
+ "@vue/cli-plugin-babel",
1717
+ "cache-loader",
1718
+ "webpack",
1719
+ "micromatch"
1720
+ ],
1721
+ [
1722
+ "@vue/cli-plugin-babel",
1723
+ "@vue/cli-service",
1724
+ "cache-loader",
1725
+ "webpack",
1726
+ "micromatch"
1727
+ ],
1728
+ [
1729
+ "@vue/cli-plugin-router",
1730
+ "@vue/cli-service",
1731
+ "cache-loader",
1732
+ "webpack",
1733
+ "micromatch"
1734
+ ],
1735
+ [
1736
+ "@vue/cli-plugin-vuex",
1737
+ "@vue/cli-service",
1738
+ "cache-loader",
1739
+ "webpack",
1740
+ "micromatch"
1741
+ ],
1742
+ [
1743
+ "@vue/cli-plugin-babel",
1744
+ "@vue/cli-service",
1745
+ "file-loader",
1746
+ "webpack",
1747
+ "micromatch"
1748
+ ],
1749
+ [
1750
+ "@vue/cli-plugin-router",
1751
+ "@vue/cli-service",
1752
+ "file-loader",
1753
+ "webpack",
1754
+ "micromatch"
1755
+ ],
1756
+ [
1757
+ "@vue/cli-plugin-vuex",
1758
+ "@vue/cli-service",
1759
+ "file-loader",
1760
+ "webpack",
1761
+ "micromatch"
1762
+ ],
1763
+ [
1764
+ "mini-css-extract-plugin",
1765
+ "webpack",
1766
+ "micromatch"
1767
+ ],
1768
+ [
1769
+ "@vue/cli-plugin-babel",
1770
+ "@vue/cli-service",
1771
+ "terser-webpack-plugin",
1772
+ "webpack",
1773
+ "micromatch"
1774
+ ],
1775
+ [
1776
+ "@vue/cli-plugin-router",
1777
+ "@vue/cli-service",
1778
+ "terser-webpack-plugin",
1779
+ "webpack",
1780
+ "micromatch"
1781
+ ],
1782
+ [
1783
+ "@vue/cli-plugin-vuex",
1784
+ "@vue/cli-service",
1785
+ "terser-webpack-plugin",
1786
+ "webpack",
1787
+ "micromatch"
1788
+ ],
1789
+ [
1790
+ "terser-webpack-plugin",
1791
+ "webpack",
1792
+ "micromatch"
1793
+ ],
1794
+ [
1795
+ "@vue/cli-plugin-babel",
1796
+ "@vue/cli-service",
1797
+ "url-loader",
1798
+ "webpack",
1799
+ "micromatch"
1800
+ ],
1801
+ [
1802
+ "@vue/cli-plugin-router",
1803
+ "@vue/cli-service",
1804
+ "url-loader",
1805
+ "webpack",
1806
+ "micromatch"
1807
+ ],
1808
+ [
1809
+ "@vue/cli-plugin-vuex",
1810
+ "@vue/cli-service",
1811
+ "url-loader",
1812
+ "webpack",
1813
+ "micromatch"
1814
+ ]
1815
+ ]
1816
+ },
1817
+ {
1818
+ "name": "mockjs",
1819
+ "severity": "high",
1820
+ "problems": [
1821
+ {
1822
+ "source": 1095258,
1823
+ "name": "mockjs",
1824
+ "dependency": "mockjs",
1825
+ "title": "mockjs vulnerable to Prototype Pollution via the Util.extend function",
1826
+ "url": "https://github.com/advisories/GHSA-mh8j-9jvh-gjf6",
1827
+ "severity": "high",
1828
+ "cwe": [
1829
+ "CWE-1321"
1830
+ ],
1831
+ "cvss": {
1832
+ "score": 8.2,
1833
+ "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:H"
1834
+ },
1835
+ "range": "<=1.1.0"
1836
+ }
1837
+ ],
1838
+ "nodes": [
1839
+ "node_modules/mockjs"
1840
+ ],
1841
+ "depChains": [
1842
+ [
1843
+ "mockjs"
1844
+ ]
1845
+ ]
1846
+ },
1847
+ {
1848
+ "name": "node-forge",
1849
+ "severity": "high",
1850
+ "problems": [
1851
+ {
1852
+ "source": 1088227,
1853
+ "name": "node-forge",
1854
+ "dependency": "node-forge",
1855
+ "title": "Prototype Pollution in node-forge debug API.",
1856
+ "url": "https://github.com/advisories/GHSA-5rrq-pxf6-6jx5",
1857
+ "severity": "low",
1858
+ "cwe": [
1859
+ "CWE-1321"
1860
+ ],
1861
+ "cvss": {
1862
+ "score": 0,
1863
+ "vectorString": null
1864
+ },
1865
+ "range": "<1.0.0"
1866
+ },
1867
+ {
1868
+ "source": 1088229,
1869
+ "name": "node-forge",
1870
+ "dependency": "node-forge",
1871
+ "title": "URL parsing in node-forge could lead to undesired behavior.",
1872
+ "url": "https://github.com/advisories/GHSA-gf8q-jrpm-jvxq",
1873
+ "severity": "low",
1874
+ "cwe": [
1875
+ "CWE-601"
1876
+ ],
1877
+ "cvss": {
1878
+ "score": 0,
1879
+ "vectorString": null
1880
+ },
1881
+ "range": "<1.0.0"
1882
+ },
1883
+ {
1884
+ "source": 1088746,
1885
+ "name": "node-forge",
1886
+ "dependency": "node-forge",
1887
+ "title": "Improper Verification of Cryptographic Signature in `node-forge`",
1888
+ "url": "https://github.com/advisories/GHSA-2r2c-g63r-vccr",
1889
+ "severity": "moderate",
1890
+ "cwe": [
1891
+ "CWE-347"
1892
+ ],
1893
+ "cvss": {
1894
+ "score": 5.3,
1895
+ "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:N"
1896
+ },
1897
+ "range": "<1.3.0"
1898
+ },
1899
+ {
1900
+ "source": 1093719,
1901
+ "name": "node-forge",
1902
+ "dependency": "node-forge",
1903
+ "title": "Open Redirect in node-forge",
1904
+ "url": "https://github.com/advisories/GHSA-8fr3-hfg3-gpgp",
1905
+ "severity": "moderate",
1906
+ "cwe": [
1907
+ "CWE-601"
1908
+ ],
1909
+ "cvss": {
1910
+ "score": 6.1,
1911
+ "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N"
1912
+ },
1913
+ "range": "<1.0.0"
1914
+ },
1915
+ {
1916
+ "source": 1102321,
1917
+ "name": "node-forge",
1918
+ "dependency": "node-forge",
1919
+ "title": "Improper Verification of Cryptographic Signature in node-forge",
1920
+ "url": "https://github.com/advisories/GHSA-x4jg-mjrx-434g",
1921
+ "severity": "high",
1922
+ "cwe": [
1923
+ "CWE-347"
1924
+ ],
1925
+ "cvss": {
1926
+ "score": 7.5,
1927
+ "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:N"
1928
+ },
1929
+ "range": "<1.3.0"
1930
+ },
1931
+ {
1932
+ "source": 1102322,
1933
+ "name": "node-forge",
1934
+ "dependency": "node-forge",
1935
+ "title": "Improper Verification of Cryptographic Signature in node-forge",
1936
+ "url": "https://github.com/advisories/GHSA-cfm4-qjh2-4765",
1937
+ "severity": "high",
1938
+ "cwe": [
1939
+ "CWE-347"
1940
+ ],
1941
+ "cvss": {
1942
+ "score": 7.5,
1943
+ "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:N"
1944
+ },
1945
+ "range": "<1.3.0"
1946
+ }
1947
+ ],
1948
+ "nodes": [
1949
+ "node_modules/node-forge"
1950
+ ],
1951
+ "depChains": [
1952
+ [
1953
+ "webpack-dev-server",
1954
+ "selfsigned",
1955
+ "node-forge"
1956
+ ]
1957
+ ]
1958
+ },
1959
+ {
1960
+ "name": "nth-check",
1961
+ "severity": "high",
1962
+ "problems": [
1963
+ {
1964
+ "source": 1095141,
1965
+ "name": "nth-check",
1966
+ "dependency": "nth-check",
1967
+ "title": "Inefficient Regular Expression Complexity in nth-check",
1968
+ "url": "https://github.com/advisories/GHSA-rp65-9cf3-cjxr",
1969
+ "severity": "high",
1970
+ "cwe": [
1971
+ "CWE-1333"
1972
+ ],
1973
+ "cvss": {
1974
+ "score": 7.5,
1975
+ "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H"
1976
+ },
1977
+ "range": "<2.0.1"
1978
+ }
1979
+ ],
1980
+ "nodes": [
1981
+ "node_modules/svgo/node_modules/nth-check"
1982
+ ],
1983
+ "depChains": [
1984
+ [
1985
+ "postcss-svgo",
1986
+ "svgo",
1987
+ "css-select",
1988
+ "nth-check"
1989
+ ]
1990
+ ]
1991
+ },
1992
+ {
1993
+ "name": "webpack-dev-middleware",
1994
+ "severity": "high",
1995
+ "problems": [
1996
+ {
1997
+ "source": 1096729,
1998
+ "name": "webpack-dev-middleware",
1999
+ "dependency": "webpack-dev-middleware",
2000
+ "title": "Path traversal in webpack-dev-middleware",
2001
+ "url": "https://github.com/advisories/GHSA-wr3j-pwj9-hqq6",
2002
+ "severity": "high",
2003
+ "cwe": [
2004
+ "CWE-22"
2005
+ ],
2006
+ "cvss": {
2007
+ "score": 7.4,
2008
+ "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:H/I:N/A:N"
2009
+ },
2010
+ "range": "<=5.3.3"
2011
+ }
2012
+ ],
2013
+ "nodes": [
2014
+ "node_modules/webpack-dev-middleware"
2015
+ ],
2016
+ "depChains": [
2017
+ [
2018
+ "webpack-dev-server",
2019
+ "webpack-dev-middleware"
2020
+ ]
2021
+ ]
2022
+ },
2023
+ {
2024
+ "name": "webpack-dev-server",
2025
+ "severity": "high",
2026
+ "problems": [
2027
+ {
2028
+ "source": 1105256,
2029
+ "name": "webpack-dev-server",
2030
+ "dependency": "webpack-dev-server",
2031
+ "title": "webpack-dev-server users' source code may be stolen when they access a malicious web site with non-Chromium based browser",
2032
+ "url": "https://github.com/advisories/GHSA-9jgg-88mc-972h",
2033
+ "severity": "moderate",
2034
+ "cwe": [
2035
+ "CWE-346"
2036
+ ],
2037
+ "cvss": {
2038
+ "score": 6.5,
2039
+ "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:N/A:N"
2040
+ },
2041
+ "range": "<=5.2.0"
2042
+ },
2043
+ {
2044
+ "source": 1105257,
2045
+ "name": "webpack-dev-server",
2046
+ "dependency": "webpack-dev-server",
2047
+ "title": "webpack-dev-server users' source code may be stolen when they access a malicious web site",
2048
+ "url": "https://github.com/advisories/GHSA-4v9v-hfq4-rm2v",
2049
+ "severity": "moderate",
2050
+ "cwe": [
2051
+ "CWE-749"
2052
+ ],
2053
+ "cvss": {
2054
+ "score": 5.3,
2055
+ "vectorString": "CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:U/C:H/I:N/A:N"
2056
+ },
2057
+ "range": "<=5.2.0"
2058
+ }
2059
+ ],
2060
+ "nodes": [
2061
+ "node_modules/webpack-dev-server"
2062
+ ],
2063
+ "depChains": [
2064
+ [
2065
+ "webpack-dev-server"
2066
+ ]
2067
+ ]
2068
+ }
2069
+ ],
2070
+ "moderate": [
2071
+ {
2072
+ "name": "postcss",
2073
+ "severity": "moderate",
2074
+ "problems": [
2075
+ {
2076
+ "source": 1094544,
2077
+ "name": "postcss",
2078
+ "dependency": "postcss",
2079
+ "title": "PostCSS line return parsing error",
2080
+ "url": "https://github.com/advisories/GHSA-7fh5-64p2-3v2j",
2081
+ "severity": "moderate",
2082
+ "cwe": [
2083
+ "CWE-74",
2084
+ "CWE-144"
2085
+ ],
2086
+ "cvss": {
2087
+ "score": 5.3,
2088
+ "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:N"
2089
+ },
2090
+ "range": "<8.4.31"
2091
+ }
2092
+ ],
2093
+ "nodes": [
2094
+ "node_modules/postcss"
2095
+ ],
2096
+ "depChains": [
2097
+ [
2098
+ "@vue/cli-plugin-babel",
2099
+ "@vue/cli-service",
2100
+ "@intervolga/optimize-cssnano-plugin",
2101
+ "postcss"
2102
+ ],
2103
+ [
2104
+ "@vue/cli-plugin-router",
2105
+ "@vue/cli-service",
2106
+ "@intervolga/optimize-cssnano-plugin",
2107
+ "postcss"
2108
+ ],
2109
+ [
2110
+ "@vue/cli-plugin-vuex",
2111
+ "@vue/cli-service",
2112
+ "@intervolga/optimize-cssnano-plugin",
2113
+ "postcss"
2114
+ ],
2115
+ [
2116
+ "@vue/cli-plugin-babel",
2117
+ "@vue/cli-service",
2118
+ "@vue/component-compiler-utils",
2119
+ "postcss"
2120
+ ],
2121
+ [
2122
+ "@vue/cli-plugin-router",
2123
+ "@vue/cli-service",
2124
+ "@vue/component-compiler-utils",
2125
+ "postcss"
2126
+ ],
2127
+ [
2128
+ "@vue/cli-plugin-vuex",
2129
+ "@vue/cli-service",
2130
+ "@vue/component-compiler-utils",
2131
+ "postcss"
2132
+ ],
2133
+ [
2134
+ "vue-loader",
2135
+ "@vue/component-compiler-utils",
2136
+ "postcss"
2137
+ ],
2138
+ [
2139
+ "autoprefixer",
2140
+ "postcss"
2141
+ ],
2142
+ [
2143
+ "css-declaration-sorter",
2144
+ "postcss"
2145
+ ],
2146
+ [
2147
+ "@vue/cli-plugin-babel",
2148
+ "@vue/cli-service",
2149
+ "css-loader",
2150
+ "postcss"
2151
+ ],
2152
+ [
2153
+ "@vue/cli-plugin-router",
2154
+ "@vue/cli-service",
2155
+ "css-loader",
2156
+ "postcss"
2157
+ ],
2158
+ [
2159
+ "@vue/cli-plugin-vuex",
2160
+ "@vue/cli-service",
2161
+ "css-loader",
2162
+ "postcss"
2163
+ ],
2164
+ [
2165
+ "@vue/cli-plugin-babel",
2166
+ "@vue/cli-service",
2167
+ "@intervolga/optimize-cssnano-plugin",
2168
+ "cssnano",
2169
+ "postcss"
2170
+ ],
2171
+ [
2172
+ "@vue/cli-plugin-router",
2173
+ "@vue/cli-service",
2174
+ "@intervolga/optimize-cssnano-plugin",
2175
+ "cssnano",
2176
+ "postcss"
2177
+ ],
2178
+ [
2179
+ "@vue/cli-plugin-vuex",
2180
+ "@vue/cli-service",
2181
+ "@intervolga/optimize-cssnano-plugin",
2182
+ "cssnano",
2183
+ "postcss"
2184
+ ],
2185
+ [
2186
+ "@vue/cli-plugin-babel",
2187
+ "@vue/cli-service",
2188
+ "cssnano",
2189
+ "postcss"
2190
+ ],
2191
+ [
2192
+ "@vue/cli-plugin-router",
2193
+ "@vue/cli-service",
2194
+ "cssnano",
2195
+ "postcss"
2196
+ ],
2197
+ [
2198
+ "@vue/cli-plugin-vuex",
2199
+ "@vue/cli-service",
2200
+ "cssnano",
2201
+ "postcss"
2202
+ ],
2203
+ [
2204
+ "@vue/cli-plugin-babel",
2205
+ "@vue/cli-service",
2206
+ "@intervolga/optimize-cssnano-plugin",
2207
+ "cssnano",
2208
+ "cssnano-preset-default",
2209
+ "postcss"
2210
+ ],
2211
+ [
2212
+ "@vue/cli-plugin-router",
2213
+ "@vue/cli-service",
2214
+ "@intervolga/optimize-cssnano-plugin",
2215
+ "cssnano",
2216
+ "cssnano-preset-default",
2217
+ "postcss"
2218
+ ],
2219
+ [
2220
+ "@vue/cli-plugin-vuex",
2221
+ "@vue/cli-service",
2222
+ "@intervolga/optimize-cssnano-plugin",
2223
+ "cssnano",
2224
+ "cssnano-preset-default",
2225
+ "postcss"
2226
+ ],
2227
+ [
2228
+ "@vue/cli-plugin-babel",
2229
+ "@vue/cli-service",
2230
+ "cssnano",
2231
+ "cssnano-preset-default",
2232
+ "postcss"
2233
+ ],
2234
+ [
2235
+ "@vue/cli-plugin-router",
2236
+ "@vue/cli-service",
2237
+ "cssnano",
2238
+ "cssnano-preset-default",
2239
+ "postcss"
2240
+ ],
2241
+ [
2242
+ "@vue/cli-plugin-vuex",
2243
+ "@vue/cli-service",
2244
+ "cssnano",
2245
+ "cssnano-preset-default",
2246
+ "postcss"
2247
+ ],
2248
+ [
2249
+ "cssnano-util-raw-cache",
2250
+ "postcss"
2251
+ ],
2252
+ [
2253
+ "@vue/cli-plugin-babel",
2254
+ "@vue/cli-service",
2255
+ "css-loader",
2256
+ "icss-utils",
2257
+ "postcss"
2258
+ ],
2259
+ [
2260
+ "@vue/cli-plugin-router",
2261
+ "@vue/cli-service",
2262
+ "css-loader",
2263
+ "icss-utils",
2264
+ "postcss"
2265
+ ],
2266
+ [
2267
+ "@vue/cli-plugin-vuex",
2268
+ "@vue/cli-service",
2269
+ "css-loader",
2270
+ "icss-utils",
2271
+ "postcss"
2272
+ ],
2273
+ [
2274
+ "postcss-modules-local-by-default",
2275
+ "icss-utils",
2276
+ "postcss"
2277
+ ],
2278
+ [
2279
+ "@vue/cli-plugin-babel",
2280
+ "@vue/cli-service",
2281
+ "css-loader",
2282
+ "postcss-modules-values",
2283
+ "icss-utils",
2284
+ "postcss"
2285
+ ],
2286
+ [
2287
+ "@vue/cli-plugin-router",
2288
+ "@vue/cli-service",
2289
+ "css-loader",
2290
+ "postcss-modules-values",
2291
+ "icss-utils",
2292
+ "postcss"
2293
+ ],
2294
+ [
2295
+ "@vue/cli-plugin-vuex",
2296
+ "@vue/cli-service",
2297
+ "css-loader",
2298
+ "postcss-modules-values",
2299
+ "icss-utils",
2300
+ "postcss"
2301
+ ],
2302
+ [
2303
+ "postcss-calc",
2304
+ "postcss"
2305
+ ],
2306
+ [
2307
+ "postcss-colormin",
2308
+ "postcss"
2309
+ ],
2310
+ [
2311
+ "postcss-convert-values",
2312
+ "postcss"
2313
+ ],
2314
+ [
2315
+ "postcss-discard-comments",
2316
+ "postcss"
2317
+ ],
2318
+ [
2319
+ "postcss-discard-duplicates",
2320
+ "postcss"
2321
+ ],
2322
+ [
2323
+ "postcss-discard-empty",
2324
+ "postcss"
2325
+ ],
2326
+ [
2327
+ "postcss-discard-overridden",
2328
+ "postcss"
2329
+ ],
2330
+ [
2331
+ "postcss-loader",
2332
+ "postcss"
2333
+ ],
2334
+ [
2335
+ "postcss-merge-longhand",
2336
+ "postcss"
2337
+ ],
2338
+ [
2339
+ "postcss-merge-rules",
2340
+ "postcss"
2341
+ ],
2342
+ [
2343
+ "postcss-minify-font-values",
2344
+ "postcss"
2345
+ ],
2346
+ [
2347
+ "postcss-minify-gradients",
2348
+ "postcss"
2349
+ ],
2350
+ [
2351
+ "postcss-minify-params",
2352
+ "postcss"
2353
+ ],
2354
+ [
2355
+ "postcss-minify-selectors",
2356
+ "postcss"
2357
+ ],
2358
+ [
2359
+ "postcss-modules-extract-imports",
2360
+ "postcss"
2361
+ ],
2362
+ [
2363
+ "postcss-modules-local-by-default",
2364
+ "postcss"
2365
+ ],
2366
+ [
2367
+ "postcss-modules-scope",
2368
+ "postcss"
2369
+ ],
2370
+ [
2371
+ "@vue/cli-plugin-babel",
2372
+ "@vue/cli-service",
2373
+ "css-loader",
2374
+ "postcss-modules-values",
2375
+ "postcss"
2376
+ ],
2377
+ [
2378
+ "@vue/cli-plugin-router",
2379
+ "@vue/cli-service",
2380
+ "css-loader",
2381
+ "postcss-modules-values",
2382
+ "postcss"
2383
+ ],
2384
+ [
2385
+ "@vue/cli-plugin-vuex",
2386
+ "@vue/cli-service",
2387
+ "css-loader",
2388
+ "postcss-modules-values",
2389
+ "postcss"
2390
+ ],
2391
+ [
2392
+ "postcss-normalize-charset",
2393
+ "postcss"
2394
+ ],
2395
+ [
2396
+ "postcss-normalize-display-values",
2397
+ "postcss"
2398
+ ],
2399
+ [
2400
+ "postcss-normalize-positions",
2401
+ "postcss"
2402
+ ],
2403
+ [
2404
+ "postcss-normalize-repeat-style",
2405
+ "postcss"
2406
+ ],
2407
+ [
2408
+ "postcss-normalize-string",
2409
+ "postcss"
2410
+ ],
2411
+ [
2412
+ "postcss-normalize-timing-functions",
2413
+ "postcss"
2414
+ ],
2415
+ [
2416
+ "postcss-normalize-unicode",
2417
+ "postcss"
2418
+ ],
2419
+ [
2420
+ "postcss-normalize-url",
2421
+ "postcss"
2422
+ ],
2423
+ [
2424
+ "postcss-normalize-whitespace",
2425
+ "postcss"
2426
+ ],
2427
+ [
2428
+ "postcss-ordered-values",
2429
+ "postcss"
2430
+ ],
2431
+ [
2432
+ "postcss-reduce-initial",
2433
+ "postcss"
2434
+ ],
2435
+ [
2436
+ "postcss-reduce-transforms",
2437
+ "postcss"
2438
+ ],
2439
+ [
2440
+ "postcss-svgo",
2441
+ "postcss"
2442
+ ],
2443
+ [
2444
+ "postcss-unique-selectors",
2445
+ "postcss"
2446
+ ],
2447
+ [
2448
+ "postcss-merge-longhand",
2449
+ "stylehacks",
2450
+ "postcss"
2451
+ ]
2452
+ ]
2453
+ },
2454
+ {
2455
+ "name": "tough-cookie",
2456
+ "severity": "moderate",
2457
+ "problems": [
2458
+ {
2459
+ "source": 1097682,
2460
+ "name": "tough-cookie",
2461
+ "dependency": "tough-cookie",
2462
+ "title": "tough-cookie Prototype Pollution vulnerability",
2463
+ "url": "https://github.com/advisories/GHSA-72xf-g2v4-qvf3",
2464
+ "severity": "moderate",
2465
+ "cwe": [
2466
+ "CWE-1321"
2467
+ ],
2468
+ "cvss": {
2469
+ "score": 6.5,
2470
+ "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:N"
2471
+ },
2472
+ "range": "<4.1.3"
2473
+ }
2474
+ ],
2475
+ "nodes": [
2476
+ "node_modules/tough-cookie"
2477
+ ],
2478
+ "depChains": [
2479
+ [
2480
+ "@vue/cli-plugin-babel",
2481
+ "@vue/cli-service",
2482
+ "@vue/cli-plugin-router",
2483
+ "@vue/cli-shared-utils",
2484
+ "request",
2485
+ "tough-cookie"
2486
+ ],
2487
+ [
2488
+ "@vue/cli-service",
2489
+ "@vue/cli-plugin-router",
2490
+ "@vue/cli-shared-utils",
2491
+ "request",
2492
+ "tough-cookie"
2493
+ ],
2494
+ [
2495
+ "@vue/cli-plugin-vuex",
2496
+ "@vue/cli-service",
2497
+ "@vue/cli-plugin-router",
2498
+ "@vue/cli-shared-utils",
2499
+ "request",
2500
+ "tough-cookie"
2501
+ ]
2502
+ ]
2503
+ },
2504
+ {
2505
+ "name": "vue-template-compiler",
2506
+ "severity": "moderate",
2507
+ "problems": [
2508
+ {
2509
+ "source": 1098721,
2510
+ "name": "vue-template-compiler",
2511
+ "dependency": "vue-template-compiler",
2512
+ "title": "vue-template-compiler vulnerable to client-side Cross-Site Scripting (XSS)",
2513
+ "url": "https://github.com/advisories/GHSA-g3ch-rx76-35fx",
2514
+ "severity": "moderate",
2515
+ "cwe": [
2516
+ "CWE-79"
2517
+ ],
2518
+ "cvss": {
2519
+ "score": 4.2,
2520
+ "vectorString": "CVSS:3.1/AV:N/AC:H/PR:L/UI:N/S:U/C:L/I:L/A:N"
2521
+ },
2522
+ "range": ">=2.0.0 <3.0.0"
2523
+ }
2524
+ ],
2525
+ "nodes": [
2526
+ "node_modules/vue-template-compiler"
2527
+ ],
2528
+ "depChains": [
2529
+ [
2530
+ "@vue/cli-plugin-babel",
2531
+ "@vue/cli-service",
2532
+ "vue-template-compiler"
2533
+ ],
2534
+ [
2535
+ "@vue/cli-plugin-router",
2536
+ "@vue/cli-service",
2537
+ "vue-template-compiler"
2538
+ ],
2539
+ [
2540
+ "@vue/cli-plugin-vuex",
2541
+ "@vue/cli-service",
2542
+ "vue-template-compiler"
2543
+ ]
2544
+ ]
2545
+ }
2546
+ ],
2547
+ "low": [
2548
+ {
2549
+ "name": "vue",
2550
+ "severity": "low",
2551
+ "problems": [
2552
+ {
2553
+ "source": 1100238,
2554
+ "name": "vue",
2555
+ "dependency": "vue",
2556
+ "title": "ReDoS vulnerability in vue package that is exploitable through inefficient regex evaluation in the parseHTML function",
2557
+ "url": "https://github.com/advisories/GHSA-5j4c-8p2g-v4jx",
2558
+ "severity": "low",
2559
+ "cwe": [
2560
+ "CWE-1333"
2561
+ ],
2562
+ "cvss": {
2563
+ "score": 3.7,
2564
+ "vectorString": "CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:L"
2565
+ },
2566
+ "range": ">=2.0.0-alpha.1 <3.0.0-alpha.0"
2567
+ }
2568
+ ],
2569
+ "nodes": [
2570
+ "node_modules/vue"
2571
+ ],
2572
+ "depChains": [
2573
+ [
2574
+ "vuex",
2575
+ "vue"
2576
+ ]
2577
+ ]
2578
+ }
2579
+ ]
2580
+ }
2581
+ }