streetfact issues

Results 4 issues of


                                            streetfact

[Bug Fix]: Improper Access Control in seaport-js via Undici

### Component Other (please describe) ### Have you ensured that all of these are up to date? - [X] seaport-js - [X] Node (minimum v16) ### What version of seaport-js...

bug

Bug Fix protojson.Unmarshal function infinite loop when unmarshaling certain forms of invalid JSON

encoding/protojson, internal/encoding/json: handle missing object values In internal/encoding/json, report an error when encountering `a }` when we are expecting an object field value. For example, the input `{"":}` now correctly...

fix(deps): update rollup bundled DOM Clobbering Gadget found scripts that leads to XSS

## Change Overview We discovered a DOM Clobbering vulnerability in rollup when bundling scripts that use import.meta.url or with plugins that emit and reference asset files from code in cjs/umd/iife...

Fix (deps): QOS.CH logback-core Expression Language Injection vulnerability

ACE vulnerability in JaninoEventEvaluator by QOS.CH logback-core up to and including version 1.5.12 in Java applications allows attackers to execute arbitrary code by compromising an existing logback configuration file or...