Homepage

@uppy/companion

OAuth helper and remote fetcher for Uppy's (https://uppy.io) extensible file upload widget with support for drag&drop, resumable uploads, previews, restrictions, file processing/encoding, remote providers like Dropbox and Google Drive, S3 and more :dog:
Licenses: MIT | ISC
Published: 7 years ago Last updated: 1 months ago Latest version: 6.2.2 Latest non-vulnerable version: 6.2.2

License

MIT>=4.0.1;
ISC>=0.14.0 <4.0.1;
Report a new vulnerability Found a mistake?

Direct Vulnerabilities

Known vulnerabilities in the @uppy/companion package. This does not include vulnerabilities belonging to this package’s dependencies.

Fix vulnerabilities automatically

Snyk's AI Trust Platform automatically finds the best upgrade path and integrates with your development workflows. Secure your code at zero cost.

Fix for free
VulnerabilityVulnerable Version
  • M
Information Exposure

<3.3.1
  • C
Server-side Request Forgery (SSRF)

<1.9.3
  • C
Server-side Request Forgery (SSRF)

<1.13.2>=2.0.0-alpha.0 <2.0.0-alpha.5

Package versions

179 VERSIONS IN TOTAL See all versions
versionpublisheddirect vulnerabilities
6.2.225 Mar, 2026
  • 0
    C
  • 0
    H
  • 0
    M
  • 0
    L
6.2.12 Dec, 2025
  • 0
    C
  • 0
    H
  • 0
    M
  • 0
    L
6.2.03 Nov, 2025
  • 0
    C
  • 0
    H
  • 0
    M
  • 0
    L
6.1.117 Oct, 2025
  • 0
    C
  • 0
    H
  • 0
    M
  • 0
    L
6.1.08 Oct, 2025
  • 0
    C
  • 0
    H
  • 0
    M
  • 0
    L
6.0.216 Sep, 2025
  • 0
    C
  • 0
    H
  • 0
    M
  • 0
    L
6.0.128 Aug, 2025
  • 0
    C
  • 0
    H
  • 0
    M
  • 0
    L
6.0.022 Aug, 2025
  • 0
    C
  • 0
    H
  • 0
    M
  • 0
    L
5.9.129 Jul, 2025
  • 0
    C
  • 0
    H
  • 0
    M
  • 0
    L
5.9.029 Jul, 2025
  • 0
    C
  • 0
    H
  • 0
    M
  • 0
    L