airbrake@0.0.7 vulnerabilities

DEPRECATION: please use @airbrake/node instead (https://www.npmjs.com/package/@airbrake/node). A Node.js notifier for Airbrake, the leading exception reporting service.

Direct Vulnerabilities

Known vulnerabilities in the airbrake package. This does not include vulnerabilities belonging to this package’s dependencies.

Automatically find and fix vulnerabilities affecting your projects. Snyk scans for vulnerabilities and provides fixes for free.
Fix for free
Vulnerability Vulnerable Version
  • M
Sensitive Information Exposure

airbrake is a Node.js notifier for the Airbrake bug and error tracking service. Versions prior to 0.4.0 serialized all environment variables and could lead to sensitive information exposure.

How to fix Sensitive Information Exposure?

Upgrade airbrake version 0.4.0 or greater.

<0.4.0
  • M
Insecure Default Configuration

airbrake versions prior to 0.4.0 defaults to sending environment variables over an unencrypted HTTP channel. These can be intercepted by an attacker, potentially exposing sensitive information.

How to fix Insecure Default Configuration?

Upgrade to version 0.4.0 or greater.

<=0.3.8