Update dependency express to v4.22.0 (main)#16
Open
mend-for-github-com[bot] wants to merge 1 commit into
Open
Mend for GitHub.com / WhiteSource Security Check
failed
Jul 12, 2026 in 1m 45s
Security Report
You have successfully remediated 8 vulnerabilities, but introduced 1 new vulnerabilities in this branch.
❌ New vulnerabilities:
| Vulnerability | Severity | Exploit Maturity | EPSS | Vulnerable Library | Direct Library | Suggested Fix | Issue | Reachability | |
|---|---|---|---|---|---|---|---|---|---|
CVE-2026-8723Path to dependency file: /package.json Path to vulnerable library: /package.json Dependency Hierarchy: -> express-4.22.0.tgz (Root Library) -> ❌ qs-6.14.2.tgz (Vulnerable Library) |
5.3 | Not Defined | 0.351% | Transitive qs-6.14.2.tgz |
express-4.22.0.tgz | Transitive 6.15.2 |
None |
✔️ Remediated vulnerabilities:
| Vulnerability | Vulnerable Library |
|---|---|
| CVE-2024-43800 | serve-static-1.13.2.tgz |
| CVE-2024-43799 | send-0.16.2.tgz |
| CVE-2024-29041 | express-4.16.4.tgz |
| CVE-2024-43796 | express-4.16.4.tgz |
| CVE-2024-47764 | cookie-0.3.1.tgz |
| CVE-2024-52798 | path-to-regexp-0.1.7.tgz |
| CVE-2024-45296 | path-to-regexp-0.1.7.tgz |
| CVE-2026-4867 | path-to-regexp-0.1.7.tgz |
Base branch total remaining vulnerabilities: 26
Base branch commit: 9ddd12f82fe16589763ffa6e6f79ebcbb635d312
Total libraries scanned: 144
Scan token: 394b109b731e4461af43d1aa339b23f0
Loading