We’ve disclosed 7 vulnerabilities 🎉

The Snyk security team helps disclose many vulnerabilities every month, in key packages across a variety of ecosystems. We work closely with open source package maintainers in order to ensure all vulnerabilities are responsibly and efficiently handled in a timely manner.
Our ever-growing list of sources include:

  • Vulnerability disclosures and reports sent to us from members of the community

  • Vulnerabilities we've uncovered by monitoring security chatter and trends across open source ecosystems

  • Partnerships with organizations and academic institutions

  • Research done internally by the Snyk Security Team

Report a new vulnerability

Featured disclosed vulnerabilities

Regular Expression Denial of Service (ReDoS)

0.0
Affects

word-wrap

Discovered by Carter Snook

Missing Origin Validation in WebSockets

0.0
Affects

code-server

Discovered by Elliot W - Snyk Research Team

Prototype Pollution

0.0
Affects

collection.js

Discovered by Peng Zhou, Yuhan Gao

Recently disclosed vulnerabilities by Snyk

View all vulnerabilities disclosed by Snyk