3.8.3
9 years ago
3 years ago
Package is deprecated
Known vulnerabilities in the codecov package. This does not include vulnerabilities belonging to this package’s dependencies.
Automatically find and fix vulnerabilities affecting your projects. Snyk scans for vulnerabilities and provides fixes for free.
Fix for freeVulnerability | Vulnerable Version |
---|---|
codecov is a npm package for uploading reports to Codecov. Affected versions of this package are vulnerable to Command Injection via the Note: This vulnerability exists due to an incomplete fix of CVE-2020-7597. How to fix Command Injection? Upgrade | <3.7.1 |
codecov is a npm package for uploading reports to Codecov. Affected versions of this package are vulnerable to Command Injection. The value provided as part of the PoC by JHU System Security Lab
How to fix Command Injection? Upgrade | <3.6.5 |
codecov is a npm package for uploading reports to Codecov. Affected versions of this package are vulnerable to Command Injection. The value provided as part of the PoC by JHU System Security Lab
How to fix Command Injection? Upgrade | <3.6.2 |