Homepage

airbrake@0.0.2 vulnerabilities

DEPRECATION: please use @airbrake/node instead (https://www.npmjs.com/package/@airbrake/node). A Node.js notifier for Airbrake, the leading exception reporting service.

  • latest version

    2.1.3

  • latest non vulnerable version

    3.0.0-beta

  • first published

    13 years ago

  • latest version published

    4 years ago

  • deprecated

    Package is deprecated

  • licenses detected

  • View airbrake package health on Snyk Advisor  (opens in a new tab)
    • Go back to all versions of this package
    Report a new vulnerability Found a mistake?

    Direct Vulnerabilities

    Known vulnerabilities in the airbrake package. This does not include vulnerabilities belonging to this package’s dependencies.

    How to fix?

    Automatically find and fix vulnerabilities affecting your projects. Snyk scans for vulnerabilities and provides fixes for free.

    Fix for free
    VulnerabilityVulnerable Version
    • M
    Sensitive Information Exposure

    airbrake is a Node.js notifier for the Airbrake bug and error tracking service. Versions prior to 0.4.0 serialized all environment variables and could lead to sensitive information exposure.

    How to fix Sensitive Information Exposure?

    Upgrade airbrake version 0.4.0 or greater.

    <0.4.0
    • M
    Insecure Default Configuration

    airbrake versions prior to 0.4.0 defaults to sending environment variables over an unencrypted HTTP channel. These can be intercepted by an attacker, potentially exposing sensitive information.

    How to fix Insecure Default Configuration?

    Upgrade to version 0.4.0 or greater.

    <=0.3.8
    Go back to all versions of this package