5.14.0
7 years ago
1 months ago
Known vulnerabilities in the gatsby-cli package. This does not include vulnerabilities belonging to this package’s dependencies.
Automatically find and fix vulnerabilities affecting your projects. Snyk scans for vulnerabilities and provides fixes for free.
Fix for freeVulnerability | Vulnerable Version |
---|---|
gatsby-cli is a Gatsby command-line interface for creating new sites and running Gatsby commands. Affected versions of this package are vulnerable to Information Exposure via local file inclusion in NOTE: By default How to fix Information Exposure? Upgrade | <5.10.0 |
Affected versions of the package are vulnerable to Resources Downloaded over Insecure Protocol due to downloading resources over an insecure protocol. It used the git:// protocol to clone repositories, which isn't safe as it is unencrypted.
You can read more about How to fix Resources Downloaded over Insecure Protocol? Upgrade | <1.0.9 |