{ "@context": "https://openvex.dev/ns/v0.2.0", "@id": "https://openvex.dev/docs/public/vex-5eed6711eb317884a67a945b89db11f5431ccb91fb63e01b41cccfed826975a7", "author": "minimus", "timestamp": "2026-06-26T04:57:31.189283314Z", "version": 1, "statements": [ { "vulnerability": { "name": "MINI-2282-q485-8h3q", "aliases": [ "CVE-2026-42504" ] }, "products": [ { "@id": "pkg:oci/npm-daycare", "hashes": { "sha-256": "sha256:7bdd9156e4b32814653297252bcc06c94a2c922db0b76fdec044d3e7224f0271" }, "subcomponents": [ { "@id": "pkg:apk/minimos/verdaccio@6.7.4-r0" } ] } ], "status": "fixed" }, { "vulnerability": { "name": "MINI-23p3-qw4q-3336", "aliases": [ "CVE-2026-4438" ] }, "products": [ { "@id": "pkg:oci/npm-daycare", "hashes": { "sha-256": "sha256:7bdd9156e4b32814653297252bcc06c94a2c922db0b76fdec044d3e7224f0271" }, "subcomponents": [ { "@id": "pkg:apk/minimos/glibc@2.43-r4" }, { "@id": "pkg:apk/minimos/glibc-locale-posix@2.43-r4" }, { "@id": "pkg:apk/minimos/ld-linux@2.43-r4" }, { "@id": "pkg:apk/minimos/posix-libc-utils@2.43-r4" } ] } ], "status": "fixed" }, { "vulnerability": { "name": "MINI-26wc-ph53-p7mq", "aliases": [ "CVE-2026-3783" ] }, "products": [ { "@id": "pkg:oci/npm-daycare", "hashes": { "sha-256": "sha256:7bdd9156e4b32814653297252bcc06c94a2c922db0b76fdec044d3e7224f0271" }, "subcomponents": [ { "@id": "pkg:apk/minimos/libcurl-openssl4@8.20.0-r0" } ] } ], "status": "fixed" }, { "vulnerability": { "name": "MINI-284v-3g9f-fr4j", "aliases": [ "CVE-2025-55132" ] }, "products": [ { "@id": "pkg:oci/npm-daycare", "hashes": { "sha-256": "sha256:7bdd9156e4b32814653297252bcc06c94a2c922db0b76fdec044d3e7224f0271" }, "subcomponents": [ { "@id": "pkg:apk/minimos/nodejs-20@20.20.2-r2" } ] } ], "status": "fixed" }, { "vulnerability": { "name": "MINI-2879-25p2-fj5g", "aliases": [ "CVE-2025-55131" ] }, "products": [ { "@id": "pkg:oci/npm-daycare", "hashes": { "sha-256": "sha256:7bdd9156e4b32814653297252bcc06c94a2c922db0b76fdec044d3e7224f0271" }, "subcomponents": [ { "@id": "pkg:apk/minimos/nodejs-20@20.20.2-r2" } ] } ], "status": "fixed" }, { "vulnerability": { "name": "MINI-28hq-3frr-vvg6", "aliases": [ "CVE-2026-7009" ] }, "products": [ { "@id": "pkg:oci/npm-daycare", "hashes": { "sha-256": "sha256:7bdd9156e4b32814653297252bcc06c94a2c922db0b76fdec044d3e7224f0271" }, "subcomponents": [ { "@id": "pkg:apk/minimos/libcurl-openssl4@8.20.0-r0" } ] } ], "status": "fixed" }, { "vulnerability": { "name": "MINI-298h-qwf7-x6h9", "aliases": [ "CVE-2025-23090" ] }, "products": [ { "@id": "pkg:oci/npm-daycare", "hashes": { "sha-256": "sha256:7bdd9156e4b32814653297252bcc06c94a2c922db0b76fdec044d3e7224f0271" }, "subcomponents": [ { "@id": "pkg:apk/minimos/nodejs-20@20.20.2-r2" } ] } ], "status": "fixed" }, { "vulnerability": { "name": "MINI-2f38-q792-vwx7", "aliases": [ "CVE-2025-61725" ] }, "products": [ { "@id": "pkg:oci/npm-daycare", "hashes": { "sha-256": "sha256:7bdd9156e4b32814653297252bcc06c94a2c922db0b76fdec044d3e7224f0271" }, "subcomponents": [ { "@id": "pkg:apk/minimos/verdaccio@6.7.4-r0" } ] } ], "status": "fixed" }, { "vulnerability": { "name": "MINI-2f7m-r4qj-fmg2", "aliases": [ "CVE-2026-53571" ] }, "products": [ { "@id": "pkg:oci/npm-daycare", "hashes": { "sha-256": "sha256:7bdd9156e4b32814653297252bcc06c94a2c922db0b76fdec044d3e7224f0271" }, "subcomponents": [ { "@id": "pkg:apk/minimos/verdaccio@6.7.4-r0" } ] } ], "status": "not_affected", "justification": "vulnerable_code_not_in_execute_path" }, { "vulnerability": { "name": "MINI-2f87-h6pc-qjx5", "aliases": [ "CVE-2026-45446" ] }, "products": [ { "@id": "pkg:oci/npm-daycare", "hashes": { "sha-256": "sha256:7bdd9156e4b32814653297252bcc06c94a2c922db0b76fdec044d3e7224f0271" }, "subcomponents": [ { "@id": "pkg:apk/minimos/libcrypto3@3.5.7-r0" }, { "@id": "pkg:apk/minimos/libssl3@3.5.7-r0" } ] } ], "status": "fixed" }, { "vulnerability": { "name": "MINI-2gwc-jxv7-h24v", "aliases": [ "CVE-2025-69873" ] }, "products": [ { "@id": "pkg:oci/npm-daycare", "hashes": { "sha-256": "sha256:7bdd9156e4b32814653297252bcc06c94a2c922db0b76fdec044d3e7224f0271" }, "subcomponents": [ { "@id": "pkg:apk/minimos/verdaccio@6.7.4-r0" } ] } ], "status": "fixed" }, { "vulnerability": { "name": "MINI-2h92-927g-392c", "aliases": [ "CVE-2025-13465" ] }, "products": [ { "@id": "pkg:oci/npm-daycare", "hashes": { "sha-256": "sha256:7bdd9156e4b32814653297252bcc06c94a2c922db0b76fdec044d3e7224f0271" }, "subcomponents": [ { "@id": "pkg:apk/minimos/verdaccio@6.7.4-r0" } ] } ], "status": "affected", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2025-13465/references" }, { "vulnerability": { "name": "MINI-2hr2-2wwq-rm26", "aliases": [ "CVE-2026-2950" ] }, "products": [ { "@id": "pkg:oci/npm-daycare", "hashes": { "sha-256": "sha256:7bdd9156e4b32814653297252bcc06c94a2c922db0b76fdec044d3e7224f0271" }, "subcomponents": [ { "@id": "pkg:apk/minimos/verdaccio@6.7.4-r0" } ] } ], "status": "affected", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-2950/references" }, { "vulnerability": { "name": "MINI-2prp-x8rh-8mp7", "aliases": [ "CVE-2025-23166" ] }, "products": [ { "@id": "pkg:oci/npm-daycare", "hashes": { "sha-256": "sha256:7bdd9156e4b32814653297252bcc06c94a2c922db0b76fdec044d3e7224f0271" }, "subcomponents": [ { "@id": "pkg:apk/minimos/nodejs-20@20.20.2-r2" } ] } ], "status": "fixed" }, { "vulnerability": { "name": "MINI-2qm3-vf86-5rgv", "aliases": [ "CVE-2026-32280" ] }, "products": [ { "@id": "pkg:oci/npm-daycare", "hashes": { "sha-256": "sha256:7bdd9156e4b32814653297252bcc06c94a2c922db0b76fdec044d3e7224f0271" }, "subcomponents": [ { "@id": "pkg:apk/minimos/verdaccio@6.7.4-r0" } ] } ], "status": "fixed" }, { "vulnerability": { "name": "MINI-2qw6-25xv-5mj8", "aliases": [ "CVE-2026-39826" ] }, "products": [ { "@id": "pkg:oci/npm-daycare", "hashes": { "sha-256": "sha256:7bdd9156e4b32814653297252bcc06c94a2c922db0b76fdec044d3e7224f0271" }, "subcomponents": [ { "@id": "pkg:apk/minimos/verdaccio@6.7.4-r0" } ] } ], "status": "fixed" }, { "vulnerability": { "name": "MINI-2r43-gqwr-3hm3", "aliases": [ "CVE-2026-8723" ] }, "products": [ { "@id": "pkg:oci/npm-daycare", "hashes": { "sha-256": "sha256:7bdd9156e4b32814653297252bcc06c94a2c922db0b76fdec044d3e7224f0271" }, "subcomponents": [ { "@id": "pkg:apk/minimos/verdaccio@6.7.4-r0" } ] } ], "status": "affected", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-8723/references" }, { "vulnerability": { "name": "MINI-2wq2-46gw-76pf", "aliases": [ "CVE-2026-32631" ] }, "products": [ { "@id": "pkg:oci/npm-daycare", "hashes": { "sha-256": "sha256:7bdd9156e4b32814653297252bcc06c94a2c922db0b76fdec044d3e7224f0271" }, "subcomponents": [ { "@id": "pkg:apk/minimos/git@2.54.0-r0" } ] } ], "status": "fixed" }, { "vulnerability": { "name": "MINI-3729-6w87-2929", "aliases": [ "CVE-2025-60876" ] }, "products": [ { "@id": "pkg:oci/npm-daycare", "hashes": { "sha-256": "sha256:7bdd9156e4b32814653297252bcc06c94a2c922db0b76fdec044d3e7224f0271" }, "subcomponents": [ { "@id": "pkg:apk/minimos/busybox@1.37.0-r7" } ] } ], "status": "fixed" }, { "vulnerability": { "name": "MINI-37ww-rjmq-xm3x", "aliases": [ "CVE-2026-39823" ] }, "products": [ { "@id": "pkg:oci/npm-daycare", "hashes": { "sha-256": "sha256:7bdd9156e4b32814653297252bcc06c94a2c922db0b76fdec044d3e7224f0271" }, "subcomponents": [ { "@id": "pkg:apk/minimos/verdaccio@6.7.4-r0" } ] } ], "status": "fixed" }, { "vulnerability": { "name": "MINI-392m-8v5j-v4j8", "aliases": [ "CVE-2024-3566" ] }, "products": [ { "@id": "pkg:oci/npm-daycare", "hashes": { "sha-256": "sha256:7bdd9156e4b32814653297252bcc06c94a2c922db0b76fdec044d3e7224f0271" }, "subcomponents": [ { "@id": "pkg:apk/minimos/nodejs-20@20.20.2-r2" } ] } ], "status": "not_affected", "justification": "component_not_present", "impact_statement": "This issue is specific to Windows environments and it does not affect Minimus packages." }, { "vulnerability": { "name": "MINI-3c4x-xhxw-2hgm", "aliases": [ "CVE-2026-42507" ] }, "products": [ { "@id": "pkg:oci/npm-daycare", "hashes": { "sha-256": "sha256:7bdd9156e4b32814653297252bcc06c94a2c922db0b76fdec044d3e7224f0271" }, "subcomponents": [ { "@id": "pkg:apk/minimos/verdaccio@6.7.4-r0" } ] } ], "status": "fixed" }, { "vulnerability": { "name": "MINI-3ch5-f9fg-5qp8", "aliases": [ "CVE-2026-6322" ] }, "products": [ { "@id": "pkg:oci/npm-daycare", "hashes": { "sha-256": "sha256:7bdd9156e4b32814653297252bcc06c94a2c922db0b76fdec044d3e7224f0271" }, "subcomponents": [ { "@id": "pkg:apk/minimos/verdaccio@6.7.4-r0" } ] } ], "status": "fixed" }, { "vulnerability": { "name": "MINI-3gcw-gf22-m559", "aliases": [ "CVE-2025-23085" ] }, "products": [ { "@id": "pkg:oci/npm-daycare", "hashes": { "sha-256": "sha256:7bdd9156e4b32814653297252bcc06c94a2c922db0b76fdec044d3e7224f0271" }, "subcomponents": [ { "@id": "pkg:apk/minimos/nodejs-20@20.20.2-r2" } ] } ], "status": "fixed" }, { "vulnerability": { "name": "MINI-3hm6-mgx4-28c5", "aliases": [ "CVE-2024-52006" ] }, "products": [ { "@id": "pkg:oci/npm-daycare", "hashes": { "sha-256": "sha256:7bdd9156e4b32814653297252bcc06c94a2c922db0b76fdec044d3e7224f0271" }, "subcomponents": [ { "@id": "pkg:apk/minimos/git@2.54.0-r0" } ] } ], "status": "fixed" }, { "vulnerability": { "name": "MINI-3jx9-w69q-v5j9", "aliases": [ "CVE-2026-0861" ] }, "products": [ { "@id": "pkg:oci/npm-daycare", "hashes": { "sha-256": "sha256:7bdd9156e4b32814653297252bcc06c94a2c922db0b76fdec044d3e7224f0271" }, "subcomponents": [ { "@id": "pkg:apk/minimos/glibc@2.43-r4" }, { "@id": "pkg:apk/minimos/glibc-locale-posix@2.43-r4" }, { "@id": "pkg:apk/minimos/ld-linux@2.43-r4" }, { "@id": "pkg:apk/minimos/posix-libc-utils@2.43-r4" } ] } ], "status": "fixed" }, { "vulnerability": { "name": "MINI-3jxx-f46j-hggr", "aliases": [ "CVE-2025-61732" ] }, "products": [ { "@id": "pkg:oci/npm-daycare", "hashes": { "sha-256": "sha256:7bdd9156e4b32814653297252bcc06c94a2c922db0b76fdec044d3e7224f0271" }, "subcomponents": [ { "@id": "pkg:apk/minimos/verdaccio@6.7.4-r0" } ] } ], "status": "not_affected", "justification": "vulnerable_code_not_present", "impact_statement": "This CVE does not affect Verdaccio in runtime." }, { "vulnerability": { "name": "MINI-3m98-48hh-xf7g", "aliases": [ "CVE-2026-39820" ] }, "products": [ { "@id": "pkg:oci/npm-daycare", "hashes": { "sha-256": "sha256:7bdd9156e4b32814653297252bcc06c94a2c922db0b76fdec044d3e7224f0271" }, "subcomponents": [ { "@id": "pkg:apk/minimos/verdaccio@6.7.4-r0" } ] } ], "status": "fixed" }, { "vulnerability": { "name": "MINI-3mpg-pxhw-x8f7", "aliases": [ "CVE-2026-27904" ] }, "products": [ { "@id": "pkg:oci/npm-daycare", "hashes": { "sha-256": "sha256:7bdd9156e4b32814653297252bcc06c94a2c922db0b76fdec044d3e7224f0271" }, "subcomponents": [ { "@id": "pkg:apk/minimos/verdaccio@6.7.4-r0" } ] } ], "status": "affected", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-27904/references" }, { "vulnerability": { "name": "MINI-3mx6-2425-qqg5", "aliases": [ "CVE-2025-58183" ] }, "products": [ { "@id": "pkg:oci/npm-daycare", "hashes": { "sha-256": "sha256:7bdd9156e4b32814653297252bcc06c94a2c922db0b76fdec044d3e7224f0271" }, "subcomponents": [ { "@id": "pkg:apk/minimos/verdaccio@6.7.4-r0" } ] } ], "status": "fixed" }, { "vulnerability": { "name": "MINI-3pc6-php8-fx8h", "aliases": [ "CVE-2025-48384" ] }, "products": [ { "@id": "pkg:oci/npm-daycare", "hashes": { "sha-256": "sha256:7bdd9156e4b32814653297252bcc06c94a2c922db0b76fdec044d3e7224f0271" }, "subcomponents": [ { "@id": "pkg:apk/minimos/git@2.54.0-r0" } ] } ], "status": "fixed" }, { "vulnerability": { "name": "MINI-3pj6-j6j8-r5xm", "aliases": [ "CVE-2025-70873" ] }, "products": [ { "@id": "pkg:oci/npm-daycare", "hashes": { "sha-256": "sha256:7bdd9156e4b32814653297252bcc06c94a2c922db0b76fdec044d3e7224f0271" }, "subcomponents": [ { "@id": "pkg:apk/minimos/sqlite-libs@3.53.2-r0" } ] } ], "status": "fixed" }, { "vulnerability": { "name": "MINI-3q3p-53f4-5ccr", "aliases": [ "CVE-2025-66030" ] }, "products": [ { "@id": "pkg:oci/npm-daycare", "hashes": { "sha-256": "sha256:7bdd9156e4b32814653297252bcc06c94a2c922db0b76fdec044d3e7224f0271" }, "subcomponents": [ { "@id": "pkg:apk/minimos/verdaccio@6.7.4-r0" } ] } ], "status": "fixed" }, { "vulnerability": { "name": "MINI-3qvc-v8m2-8cj3", "aliases": [ "CVE-2025-65945" ] }, "products": [ { "@id": "pkg:oci/npm-daycare", "hashes": { "sha-256": "sha256:7bdd9156e4b32814653297252bcc06c94a2c922db0b76fdec044d3e7224f0271" }, "subcomponents": [ { "@id": "pkg:apk/minimos/verdaccio@6.7.4-r0" } ] } ], "status": "fixed" }, { "vulnerability": { "name": "MINI-3rjr-9rfx-rpgc", "aliases": [ "CVE-2026-1965" ] }, "products": [ { "@id": "pkg:oci/npm-daycare", "hashes": { "sha-256": "sha256:7bdd9156e4b32814653297252bcc06c94a2c922db0b76fdec044d3e7224f0271" }, "subcomponents": [ { "@id": "pkg:apk/minimos/libcurl-openssl4@8.20.0-r0" } ] } ], "status": "fixed" }, { "vulnerability": { "name": "MINI-3w5f-54q2-84fq", "aliases": [ "CVE-2026-21714" ] }, "products": [ { "@id": "pkg:oci/npm-daycare", "hashes": { "sha-256": "sha256:7bdd9156e4b32814653297252bcc06c94a2c922db0b76fdec044d3e7224f0271" }, "subcomponents": [ { "@id": "pkg:apk/minimos/nodejs-20@20.20.2-r2" } ] } ], "status": "fixed" }, { "vulnerability": { "name": "MINI-3x76-93xr-jhmv", "aliases": [ "CVE-2026-7383" ] }, "products": [ { "@id": "pkg:oci/npm-daycare", "hashes": { "sha-256": "sha256:7bdd9156e4b32814653297252bcc06c94a2c922db0b76fdec044d3e7224f0271" }, "subcomponents": [ { "@id": "pkg:apk/minimos/libcrypto3@3.5.7-r0" }, { "@id": "pkg:apk/minimos/libssl3@3.5.7-r0" } ] } ], "status": "fixed" }, { "vulnerability": { "name": "MINI-3x8c-vrg3-jgxr", "aliases": [ "CVE-2026-39819" ] }, "products": [ { "@id": "pkg:oci/npm-daycare", "hashes": { "sha-256": "sha256:7bdd9156e4b32814653297252bcc06c94a2c922db0b76fdec044d3e7224f0271" }, "subcomponents": [ { "@id": "pkg:apk/minimos/verdaccio@6.7.4-r0" } ] } ], "status": "fixed" }, { "vulnerability": { "name": "MINI-3x9f-7m32-x76j", "aliases": [ "CVE-2026-53632" ] }, "products": [ { "@id": "pkg:oci/npm-daycare", "hashes": { "sha-256": "sha256:7bdd9156e4b32814653297252bcc06c94a2c922db0b76fdec044d3e7224f0271" }, "subcomponents": [ { "@id": "pkg:apk/minimos/verdaccio@6.7.4-r0" } ] } ], "status": "under_investigation" }, { "vulnerability": { "name": "MINI-429h-7wh5-2wqh", "aliases": [ "CVE-2026-48937" ] }, "products": [ { "@id": "pkg:oci/npm-daycare", "hashes": { "sha-256": "sha256:7bdd9156e4b32814653297252bcc06c94a2c922db0b76fdec044d3e7224f0271" }, "subcomponents": [ { "@id": "pkg:apk/minimos/nodejs-20@20.20.2-r2" } ] } ], "status": "affected", "impact_statement": "A fix is not planned for this version, as it has reached end-of-life.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-48937/references" }, { "vulnerability": { "name": "MINI-45xp-g7vr-w6g8", "aliases": [ "CVE-2026-12151" ] }, "products": [ { "@id": "pkg:oci/npm-daycare", "hashes": { "sha-256": "sha256:7bdd9156e4b32814653297252bcc06c94a2c922db0b76fdec044d3e7224f0271" }, "subcomponents": [ { "@id": "pkg:apk/minimos/npm@11.17.0-r0" } ] } ], "status": "affected", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-12151/references" }, { "vulnerability": { "name": "MINI-47fx-7r2j-mw42", "aliases": [ "CVE-2026-27904" ] }, "products": [ { "@id": "pkg:oci/npm-daycare", "hashes": { "sha-256": "sha256:7bdd9156e4b32814653297252bcc06c94a2c922db0b76fdec044d3e7224f0271" }, "subcomponents": [ { "@id": "pkg:apk/minimos/npm@11.17.0-r0" } ] } ], "status": "fixed" }, { "vulnerability": { "name": "MINI-486c-c7gp-v648", "aliases": [ "CVE-2026-42338" ] }, "products": [ { "@id": "pkg:oci/npm-daycare", "hashes": { "sha-256": "sha256:7bdd9156e4b32814653297252bcc06c94a2c922db0b76fdec044d3e7224f0271" }, "subcomponents": [ { "@id": "pkg:apk/minimos/npm@11.17.0-r0" } ] } ], "status": "fixed" }, { "vulnerability": { "name": "MINI-486q-m78q-mfxg", "aliases": [ "CVE-2025-27210" ] }, "products": [ { "@id": "pkg:oci/npm-daycare", "hashes": { "sha-256": "sha256:7bdd9156e4b32814653297252bcc06c94a2c922db0b76fdec044d3e7224f0271" }, "subcomponents": [ { "@id": "pkg:apk/minimos/nodejs-20@20.20.2-r2" } ] } ], "status": "fixed" }, { "vulnerability": { "name": "MINI-48mp-hcph-jc47", "aliases": [ "CVE-2026-6733" ] }, "products": [ { "@id": "pkg:oci/npm-daycare", "hashes": { "sha-256": "sha256:7bdd9156e4b32814653297252bcc06c94a2c922db0b76fdec044d3e7224f0271" }, "subcomponents": [ { "@id": "pkg:apk/minimos/npm@11.17.0-r0" } ] } ], "status": "under_investigation" }, { "vulnerability": { "name": "MINI-494q-89wf-335r", "aliases": [ "CVE-2025-47907" ] }, "products": [ { "@id": "pkg:oci/npm-daycare", "hashes": { "sha-256": "sha256:7bdd9156e4b32814653297252bcc06c94a2c922db0b76fdec044d3e7224f0271" }, "subcomponents": [ { "@id": "pkg:apk/minimos/verdaccio@6.7.4-r0" } ] } ], "status": "not_affected", "justification": "vulnerable_code_not_present" }, { "vulnerability": { "name": "MINI-49mw-4m7j-pp8g", "aliases": [ "CVE-2025-14524" ] }, "products": [ { "@id": "pkg:oci/npm-daycare", "hashes": { "sha-256": "sha256:7bdd9156e4b32814653297252bcc06c94a2c922db0b76fdec044d3e7224f0271" }, "subcomponents": [ { "@id": "pkg:apk/minimos/libcurl-openssl4@8.20.0-r0" } ] } ], "status": "fixed" }, { "vulnerability": { "name": "MINI-4h72-q8mg-g9mp", "aliases": [ "CVE-2025-0167" ] }, "products": [ { "@id": "pkg:oci/npm-daycare", "hashes": { "sha-256": "sha256:7bdd9156e4b32814653297252bcc06c94a2c922db0b76fdec044d3e7224f0271" }, "subcomponents": [ { "@id": "pkg:apk/minimos/libcurl-openssl4@8.20.0-r0" } ] } ], "status": "fixed" }, { "vulnerability": { "name": "MINI-4hff-6j5q-cp3r", "aliases": [ "CVE-2025-0395" ] }, "products": [ { "@id": "pkg:oci/npm-daycare", "hashes": { "sha-256": "sha256:7bdd9156e4b32814653297252bcc06c94a2c922db0b76fdec044d3e7224f0271" }, "subcomponents": [ { "@id": "pkg:apk/minimos/glibc@2.43-r4" }, { "@id": "pkg:apk/minimos/glibc-locale-posix@2.43-r4" }, { "@id": "pkg:apk/minimos/ld-linux@2.43-r4" }, { "@id": "pkg:apk/minimos/posix-libc-utils@2.43-r4" } ] } ], "status": "fixed" }, { "vulnerability": { "name": "MINI-4hjr-3rw9-p262", "aliases": [ "CVE-2019-1010025" ] }, "products": [ { "@id": "pkg:oci/npm-daycare", "hashes": { "sha-256": "sha256:7bdd9156e4b32814653297252bcc06c94a2c922db0b76fdec044d3e7224f0271" }, "subcomponents": [ { "@id": "pkg:apk/minimos/glibc@2.43-r4" }, { "@id": "pkg:apk/minimos/glibc-locale-posix@2.43-r4" }, { "@id": "pkg:apk/minimos/ld-linux@2.43-r4" }, { "@id": "pkg:apk/minimos/posix-libc-utils@2.43-r4" } ] } ], "status": "not_affected", "justification": "vulnerable_code_not_present", "impact_statement": "The CVE is disputed and the upstream project has determined it does not pose a risk." }, { "vulnerability": { "name": "MINI-4hw5-4h77-c564", "aliases": [ "CVE-2025-23167" ] }, "products": [ { "@id": "pkg:oci/npm-daycare", "hashes": { "sha-256": "sha256:7bdd9156e4b32814653297252bcc06c94a2c922db0b76fdec044d3e7224f0271" }, "subcomponents": [ { "@id": "pkg:apk/minimos/nodejs-20@20.20.2-r2" } ] } ], "status": "fixed" }, { "vulnerability": { "name": "MINI-4hx7-r8fj-4v45", "aliases": [ "CVE-2026-5928" ] }, "products": [ { "@id": "pkg:oci/npm-daycare", "hashes": { "sha-256": "sha256:7bdd9156e4b32814653297252bcc06c94a2c922db0b76fdec044d3e7224f0271" }, "subcomponents": [ { "@id": "pkg:apk/minimos/glibc@2.43-r4" }, { "@id": "pkg:apk/minimos/glibc-locale-posix@2.43-r4" }, { "@id": "pkg:apk/minimos/ld-linux@2.43-r4" }, { "@id": "pkg:apk/minimos/posix-libc-utils@2.43-r4" } ] } ], "status": "fixed" }, { "vulnerability": { "name": "MINI-4mwp-32g3-4x3m", "aliases": [ "CVE-2026-5358" ] }, "products": [ { "@id": "pkg:oci/npm-daycare", "hashes": { "sha-256": "sha256:7bdd9156e4b32814653297252bcc06c94a2c922db0b76fdec044d3e7224f0271" }, "subcomponents": [ { "@id": "pkg:apk/minimos/glibc@2.43-r4" }, { "@id": "pkg:apk/minimos/glibc-locale-posix@2.43-r4" }, { "@id": "pkg:apk/minimos/ld-linux@2.43-r4" }, { "@id": "pkg:apk/minimos/posix-libc-utils@2.43-r4" } ] } ], "status": "not_affected", "justification": "vulnerable_code_not_present", "impact_statement": "This CVE was rejected by sourceware, for more details refer to - https://sourceware.org/git/?p=glibc.git;a=blob;f=advisories/GLIBC-SA-2026-0008;h=43b38ce38a78b6458608fa4c044994b8d8516751;hb=HEAD" }, { "vulnerability": { "name": "MINI-4p6w-8m7m-rvhm", "aliases": [ "CVE-2026-32141" ] }, "products": [ { "@id": "pkg:oci/npm-daycare", "hashes": { "sha-256": "sha256:7bdd9156e4b32814653297252bcc06c94a2c922db0b76fdec044d3e7224f0271" }, "subcomponents": [ { "@id": "pkg:apk/minimos/verdaccio@6.7.4-r0" } ] } ], "status": "affected", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-32141/references" }, { "vulnerability": { "name": "MINI-4p83-vxvw-pcfh", "aliases": [ "CVE-2026-24001" ] }, "products": [ { "@id": "pkg:oci/npm-daycare", "hashes": { "sha-256": "sha256:7bdd9156e4b32814653297252bcc06c94a2c922db0b76fdec044d3e7224f0271" }, "subcomponents": [ { "@id": "pkg:apk/minimos/verdaccio@6.7.4-r0" } ] } ], "status": "affected", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-24001/references" }, { "vulnerability": { "name": "MINI-4wf2-8ch9-mggm", "aliases": [ "CVE-2026-32288" ] }, "products": [ { "@id": "pkg:oci/npm-daycare", "hashes": { "sha-256": "sha256:7bdd9156e4b32814653297252bcc06c94a2c922db0b76fdec044d3e7224f0271" }, "subcomponents": [ { "@id": "pkg:apk/minimos/verdaccio@6.7.4-r0" } ] } ], "status": "fixed" }, { "vulnerability": { "name": "MINI-4x56-859r-prjq", "aliases": [ "CVE-2025-9231" ] }, "products": [ { "@id": "pkg:oci/npm-daycare", "hashes": { "sha-256": "sha256:7bdd9156e4b32814653297252bcc06c94a2c922db0b76fdec044d3e7224f0271" }, "subcomponents": [ { "@id": "pkg:apk/minimos/libcrypto3@3.5.7-r0" }, { "@id": "pkg:apk/minimos/libssl3@3.5.7-r0" } ] } ], "status": "fixed" }, { "vulnerability": { "name": "MINI-547w-mfp7-933m", "aliases": [ "CVE-2025-9230" ] }, "products": [ { "@id": "pkg:oci/npm-daycare", "hashes": { "sha-256": "sha256:7bdd9156e4b32814653297252bcc06c94a2c922db0b76fdec044d3e7224f0271" }, "subcomponents": [ { "@id": "pkg:apk/minimos/libcrypto3@3.5.7-r0" }, { "@id": "pkg:apk/minimos/libssl3@3.5.7-r0" } ] } ], "status": "fixed" }, { "vulnerability": { "name": "MINI-5699-2qf6-m8cp", "aliases": [ "CVE-2026-5435" ] }, "products": [ { "@id": "pkg:oci/npm-daycare", "hashes": { "sha-256": "sha256:7bdd9156e4b32814653297252bcc06c94a2c922db0b76fdec044d3e7224f0271" }, "subcomponents": [ { "@id": "pkg:apk/minimos/glibc@2.43-r4" }, { "@id": "pkg:apk/minimos/glibc-locale-posix@2.43-r4" }, { "@id": "pkg:apk/minimos/ld-linux@2.43-r4" }, { "@id": "pkg:apk/minimos/posix-libc-utils@2.43-r4" } ] } ], "status": "fixed" }, { "vulnerability": { "name": "MINI-5789-c952-wmp2", "aliases": [ "CVE-2025-29087" ] }, "products": [ { "@id": "pkg:oci/npm-daycare", "hashes": { "sha-256": "sha256:7bdd9156e4b32814653297252bcc06c94a2c922db0b76fdec044d3e7224f0271" }, "subcomponents": [ { "@id": "pkg:apk/minimos/sqlite-libs@3.53.2-r0" } ] } ], "status": "fixed" }, { "vulnerability": { "name": "MINI-587w-8hwq-g923", "aliases": [ "CVE-2026-26960" ] }, "products": [ { "@id": "pkg:oci/npm-daycare", "hashes": { "sha-256": "sha256:7bdd9156e4b32814653297252bcc06c94a2c922db0b76fdec044d3e7224f0271" }, "subcomponents": [ { "@id": "pkg:apk/minimos/npm@11.17.0-r0" } ] } ], "status": "fixed" }, { "vulnerability": { "name": "MINI-58pm-m586-rj2q", "aliases": [ "CVE-2025-48385" ] }, "products": [ { "@id": "pkg:oci/npm-daycare", "hashes": { "sha-256": "sha256:7bdd9156e4b32814653297252bcc06c94a2c922db0b76fdec044d3e7224f0271" }, "subcomponents": [ { "@id": "pkg:apk/minimos/git@2.54.0-r0" } ] } ], "status": "fixed" }, { "vulnerability": { "name": "MINI-59w5-5xcp-wr74", "aliases": [ "CVE-2026-21637" ] }, "products": [ { "@id": "pkg:oci/npm-daycare", "hashes": { "sha-256": "sha256:7bdd9156e4b32814653297252bcc06c94a2c922db0b76fdec044d3e7224f0271" }, "subcomponents": [ { "@id": "pkg:apk/minimos/nodejs-20@20.20.2-r2" } ] } ], "status": "fixed" }, { "vulnerability": { "name": "MINI-5fwx-pgcg-m63x", "aliases": [ "CVE-2025-69421" ] }, "products": [ { "@id": "pkg:oci/npm-daycare", "hashes": { "sha-256": "sha256:7bdd9156e4b32814653297252bcc06c94a2c922db0b76fdec044d3e7224f0271" }, "subcomponents": [ { "@id": "pkg:apk/minimos/libcrypto3@3.5.7-r0" }, { "@id": "pkg:apk/minimos/libssl3@3.5.7-r0" } ] } ], "status": "fixed" }, { "vulnerability": { "name": "MINI-5g7m-gjmp-w9qh", "aliases": [ "CVE-2026-33671" ] }, "products": [ { "@id": "pkg:oci/npm-daycare", "hashes": { "sha-256": "sha256:7bdd9156e4b32814653297252bcc06c94a2c922db0b76fdec044d3e7224f0271" }, "subcomponents": [ { "@id": "pkg:apk/minimos/npm@11.17.0-r0" } ] } ], "status": "fixed" }, { "vulnerability": { "name": "MINI-5qqx-9hqf-9mf3", "aliases": [ "CVE-2025-55130" ] }, "products": [ { "@id": "pkg:oci/npm-daycare", "hashes": { "sha-256": "sha256:7bdd9156e4b32814653297252bcc06c94a2c922db0b76fdec044d3e7224f0271" }, "subcomponents": [ { "@id": "pkg:apk/minimos/nodejs-20@20.20.2-r2" } ] } ], "status": "fixed" }, { "vulnerability": { "name": "MINI-5vhh-5ppp-9fc3", "aliases": [ "CVE-2025-3277" ] }, "products": [ { "@id": "pkg:oci/npm-daycare", "hashes": { "sha-256": "sha256:7bdd9156e4b32814653297252bcc06c94a2c922db0b76fdec044d3e7224f0271" }, "subcomponents": [ { "@id": "pkg:apk/minimos/sqlite-libs@3.53.2-r0" } ] } ], "status": "fixed" }, { "vulnerability": { "name": "MINI-5vmg-c4pg-wxvh", "aliases": [ "CVE-2026-21713" ] }, "products": [ { "@id": "pkg:oci/npm-daycare", "hashes": { "sha-256": "sha256:7bdd9156e4b32814653297252bcc06c94a2c922db0b76fdec044d3e7224f0271" }, "subcomponents": [ { "@id": "pkg:apk/minimos/nodejs-20@20.20.2-r2" } ] } ], "status": "fixed" }, { "vulnerability": { "name": "MINI-5vqv-cgr7-mvv6", "aliases": [ "CVE-2026-42766" ] }, "products": [ { "@id": "pkg:oci/npm-daycare", "hashes": { "sha-256": "sha256:7bdd9156e4b32814653297252bcc06c94a2c922db0b76fdec044d3e7224f0271" }, "subcomponents": [ { "@id": "pkg:apk/minimos/libcrypto3@3.5.7-r0" }, { "@id": "pkg:apk/minimos/libssl3@3.5.7-r0" } ] } ], "status": "fixed" }, { "vulnerability": { "name": "MINI-5xfc-qf8m-mg3g", "aliases": [ "CVE-2026-5704" ] }, "products": [ { "@id": "pkg:oci/npm-daycare", "hashes": { "sha-256": "sha256:7bdd9156e4b32814653297252bcc06c94a2c922db0b76fdec044d3e7224f0271" }, "subcomponents": [ { "@id": "pkg:apk/minimos/gnutar@1.35-r3" } ] } ], "status": "under_investigation" }, { "vulnerability": { "name": "MINI-6276-q479-355q", "aliases": [ "CVE-2026-12143" ] }, "products": [ { "@id": "pkg:oci/npm-daycare", "hashes": { "sha-256": "sha256:7bdd9156e4b32814653297252bcc06c94a2c922db0b76fdec044d3e7224f0271" }, "subcomponents": [ { "@id": "pkg:apk/minimos/verdaccio@6.7.4-r0" } ] } ], "status": "not_affected", "justification": "vulnerable_code_not_in_execute_path" }, { "vulnerability": { "name": "MINI-62h8-7mgp-qhxg", "aliases": [ "CVE-2026-41305" ] }, "products": [ { "@id": "pkg:oci/npm-daycare", "hashes": { "sha-256": "sha256:7bdd9156e4b32814653297252bcc06c94a2c922db0b76fdec044d3e7224f0271" }, "subcomponents": [ { "@id": "pkg:apk/minimos/verdaccio@6.7.4-r0" } ] } ], "status": "fixed" }, { "vulnerability": { "name": "MINI-62v8-6xcg-c248", "aliases": [ "CVE-2026-53550" ] }, "products": [ { "@id": "pkg:oci/npm-daycare", "hashes": { "sha-256": "sha256:7bdd9156e4b32814653297252bcc06c94a2c922db0b76fdec044d3e7224f0271" }, "subcomponents": [ { "@id": "pkg:apk/minimos/verdaccio@6.7.4-r0" } ] } ], "status": "under_investigation" }, { "vulnerability": { "name": "MINI-6378-ggcg-mxf2", "aliases": [ "CVE-2026-34182" ] }, "products": [ { "@id": "pkg:oci/npm-daycare", "hashes": { "sha-256": "sha256:7bdd9156e4b32814653297252bcc06c94a2c922db0b76fdec044d3e7224f0271" }, "subcomponents": [ { "@id": "pkg:apk/minimos/libcrypto3@3.5.7-r0" }, { "@id": "pkg:apk/minimos/libssl3@3.5.7-r0" } ] } ], "status": "fixed" }, { "vulnerability": { "name": "MINI-637w-6gg8-h8h6", "aliases": [ "CVE-2026-26996" ] }, "products": [ { "@id": "pkg:oci/npm-daycare", "hashes": { "sha-256": "sha256:7bdd9156e4b32814653297252bcc06c94a2c922db0b76fdec044d3e7224f0271" }, "subcomponents": [ { "@id": "pkg:apk/minimos/verdaccio@6.7.4-r0" } ] } ], "status": "affected", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-26996/references" }, { "vulnerability": { "name": "MINI-646c-qwjc-fhrr", "aliases": [ "CVE-2026-22795" ] }, "products": [ { "@id": "pkg:oci/npm-daycare", "hashes": { "sha-256": "sha256:7bdd9156e4b32814653297252bcc06c94a2c922db0b76fdec044d3e7224f0271" }, "subcomponents": [ { "@id": "pkg:apk/minimos/libcrypto3@3.5.7-r0" }, { "@id": "pkg:apk/minimos/libssl3@3.5.7-r0" } ] } ], "status": "fixed" }, { "vulnerability": { "name": "MINI-647h-5wjm-hwvm", "aliases": [ "CVE-2026-34181" ] }, "products": [ { "@id": "pkg:oci/npm-daycare", "hashes": { "sha-256": "sha256:7bdd9156e4b32814653297252bcc06c94a2c922db0b76fdec044d3e7224f0271" }, "subcomponents": [ { "@id": "pkg:apk/minimos/libcrypto3@3.5.7-r0" }, { "@id": "pkg:apk/minimos/libssl3@3.5.7-r0" } ] } ], "status": "fixed" }, { "vulnerability": { "name": "MINI-65p2-m2xq-gjv2", "aliases": [ "CVE-2025-15284" ] }, "products": [ { "@id": "pkg:oci/npm-daycare", "hashes": { "sha-256": "sha256:7bdd9156e4b32814653297252bcc06c94a2c922db0b76fdec044d3e7224f0271" }, "subcomponents": [ { "@id": "pkg:apk/minimos/verdaccio@6.7.4-r0" } ] } ], "status": "affected", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2025-15284/references" }, { "vulnerability": { "name": "MINI-65xw-w3w7-rq9j", "aliases": [ "CVE-2025-69420" ] }, "products": [ { "@id": "pkg:oci/npm-daycare", "hashes": { "sha-256": "sha256:7bdd9156e4b32814653297252bcc06c94a2c922db0b76fdec044d3e7224f0271" }, "subcomponents": [ { "@id": "pkg:apk/minimos/libcrypto3@3.5.7-r0" }, { "@id": "pkg:apk/minimos/libssl3@3.5.7-r0" } ] } ], "status": "fixed" }, { "vulnerability": { "name": "MINI-666j-ghqh-w332", "aliases": [ "CVE-2026-48617" ] }, "products": [ { "@id": "pkg:oci/npm-daycare", "hashes": { "sha-256": "sha256:7bdd9156e4b32814653297252bcc06c94a2c922db0b76fdec044d3e7224f0271" }, "subcomponents": [ { "@id": "pkg:apk/minimos/nodejs-20@20.20.2-r2" } ] } ], "status": "affected", "impact_statement": "A fix is not planned for this version, as it has reached end-of-life.", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-48617/references" }, { "vulnerability": { "name": "MINI-66qv-qjhf-p8mr", "aliases": [ "CVE-2025-48386" ] }, "products": [ { "@id": "pkg:oci/npm-daycare", "hashes": { "sha-256": "sha256:7bdd9156e4b32814653297252bcc06c94a2c922db0b76fdec044d3e7224f0271" }, "subcomponents": [ { "@id": "pkg:apk/minimos/git@2.54.0-r0" } ] } ], "status": "fixed" }, { "vulnerability": { "name": "MINI-6826-m9fp-4m68", "aliases": [ "CVE-2026-29786" ] }, "products": [ { "@id": "pkg:oci/npm-daycare", "hashes": { "sha-256": "sha256:7bdd9156e4b32814653297252bcc06c94a2c922db0b76fdec044d3e7224f0271" }, "subcomponents": [ { "@id": "pkg:apk/minimos/npm@11.17.0-r0" } ] } ], "status": "fixed" }, { "vulnerability": { "name": "MINI-6888-qchf-6vhq", "aliases": [ "CVE-2026-6253" ] }, "products": [ { "@id": "pkg:oci/npm-daycare", "hashes": { "sha-256": "sha256:7bdd9156e4b32814653297252bcc06c94a2c922db0b76fdec044d3e7224f0271" }, "subcomponents": [ { "@id": "pkg:apk/minimos/libcurl-openssl4@8.20.0-r0" } ] } ], "status": "fixed" }, { "vulnerability": { "name": "MINI-697q-w5vg-r6cr", "aliases": [ "CVE-2024-13176" ] }, "products": [ { "@id": "pkg:oci/npm-daycare", "hashes": { "sha-256": "sha256:7bdd9156e4b32814653297252bcc06c94a2c922db0b76fdec044d3e7224f0271" }, "subcomponents": [ { "@id": "pkg:apk/minimos/libcrypto3@3.5.7-r0" }, { "@id": "pkg:apk/minimos/libssl3@3.5.7-r0" } ] } ], "status": "fixed" }, { "vulnerability": { "name": "MINI-6hrr-wcqg-3rxq", "aliases": [ "CVE-2025-23084" ] }, "products": [ { "@id": "pkg:oci/npm-daycare", "hashes": { "sha-256": "sha256:7bdd9156e4b32814653297252bcc06c94a2c922db0b76fdec044d3e7224f0271" }, "subcomponents": [ { "@id": "pkg:apk/minimos/nodejs-20@20.20.2-r2" } ] } ], "status": "fixed" }, { "vulnerability": { "name": "MINI-6r9q-6v2x-g4pj", "aliases": [ "CVE-2026-23745" ] }, "products": [ { "@id": "pkg:oci/npm-daycare", "hashes": { "sha-256": "sha256:7bdd9156e4b32814653297252bcc06c94a2c922db0b76fdec044d3e7224f0271" }, "subcomponents": [ { "@id": "pkg:apk/minimos/npm@11.17.0-r0" } ] } ], "status": "fixed" }, { "vulnerability": { "name": "MINI-6rmj-qw52-qg2p", "aliases": [ "CVE-2025-22873" ] }, "products": [ { "@id": "pkg:oci/npm-daycare", "hashes": { "sha-256": "sha256:7bdd9156e4b32814653297252bcc06c94a2c922db0b76fdec044d3e7224f0271" }, "subcomponents": [ { "@id": "pkg:apk/minimos/verdaccio@6.7.4-r0" } ] } ], "status": "not_affected", "justification": "vulnerable_code_not_present", "impact_statement": "This CVE does not affect Verdaccio in runtime." }, { "vulnerability": { "name": "MINI-6w7m-9pfq-rcx3", "aliases": [ "CVE-2025-64756" ] }, "products": [ { "@id": "pkg:oci/npm-daycare", "hashes": { "sha-256": "sha256:7bdd9156e4b32814653297252bcc06c94a2c922db0b76fdec044d3e7224f0271" }, "subcomponents": [ { "@id": "pkg:apk/minimos/npm@11.17.0-r0" } ] } ], "status": "fixed" }, { "vulnerability": { "name": "MINI-749q-8cfx-fw4g", "aliases": [ "CVE-2026-4873" ] }, "products": [ { "@id": "pkg:oci/npm-daycare", "hashes": { "sha-256": "sha256:7bdd9156e4b32814653297252bcc06c94a2c922db0b76fdec044d3e7224f0271" }, "subcomponents": [ { "@id": "pkg:apk/minimos/libcurl-openssl4@8.20.0-r0" } ] } ], "status": "fixed" }, { "vulnerability": { "name": "MINI-76qx-24gc-g3v2", "aliases": [ "CVE-2026-33672" ] }, "products": [ { "@id": "pkg:oci/npm-daycare", "hashes": { "sha-256": "sha256:7bdd9156e4b32814653297252bcc06c94a2c922db0b76fdec044d3e7224f0271" }, "subcomponents": [ { "@id": "pkg:apk/minimos/npm@11.17.0-r0" } ] } ], "status": "fixed" }, { "vulnerability": { "name": "MINI-7cvr-wgvg-725p", "aliases": [ "CVE-2026-33941" ] }, "products": [ { "@id": "pkg:oci/npm-daycare", "hashes": { "sha-256": "sha256:7bdd9156e4b32814653297252bcc06c94a2c922db0b76fdec044d3e7224f0271" }, "subcomponents": [ { "@id": "pkg:apk/minimos/verdaccio@6.7.4-r0" } ] } ], "status": "fixed" }, { "vulnerability": { "name": "MINI-7gfh-wjf8-j349", "aliases": [ "CVE-2026-26996" ] }, "products": [ { "@id": "pkg:oci/npm-daycare", "hashes": { "sha-256": "sha256:7bdd9156e4b32814653297252bcc06c94a2c922db0b76fdec044d3e7224f0271" }, "subcomponents": [ { "@id": "pkg:apk/minimos/npm@11.17.0-r0" } ] } ], "status": "fixed" }, { "vulnerability": { "name": "MINI-7h79-62v2-3j6x", "aliases": [ "CVE-2022-25883" ] }, "products": [ { "@id": "pkg:oci/npm-daycare", "hashes": { "sha-256": "sha256:7bdd9156e4b32814653297252bcc06c94a2c922db0b76fdec044d3e7224f0271" }, "subcomponents": [ { "@id": "pkg:apk/minimos/verdaccio@6.7.4-r0" } ] } ], "status": "affected", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2022-25883/references" }, { "vulnerability": { "name": "MINI-7hf4-86gx-5242", "aliases": [ "CVE-2026-7168" ] }, "products": [ { "@id": "pkg:oci/npm-daycare", "hashes": { "sha-256": "sha256:7bdd9156e4b32814653297252bcc06c94a2c922db0b76fdec044d3e7224f0271" }, "subcomponents": [ { "@id": "pkg:apk/minimos/libcurl-openssl4@8.20.0-r0" } ] } ], "status": "fixed" }, { "vulnerability": { "name": "MINI-7hwv-2fw6-6jwr", "aliases": [ "CVE-2026-42768" ] }, "products": [ { "@id": "pkg:oci/npm-daycare", "hashes": { "sha-256": "sha256:7bdd9156e4b32814653297252bcc06c94a2c922db0b76fdec044d3e7224f0271" }, "subcomponents": [ { "@id": "pkg:apk/minimos/libcrypto3@3.5.7-r0" }, { "@id": "pkg:apk/minimos/libssl3@3.5.7-r0" } ] } ], "status": "fixed" }, { "vulnerability": { "name": "MINI-7m99-g547-v4xv", "aliases": [ "CVE-2026-33916" ] }, "products": [ { "@id": "pkg:oci/npm-daycare", "hashes": { "sha-256": "sha256:7bdd9156e4b32814653297252bcc06c94a2c922db0b76fdec044d3e7224f0271" }, "subcomponents": [ { "@id": "pkg:apk/minimos/verdaccio@6.7.4-r0" } ] } ], "status": "fixed" }, { "vulnerability": { "name": "MINI-7wp7-jpwj-rjwh", "aliases": [ "CVE-2025-59466" ] }, "products": [ { "@id": "pkg:oci/npm-daycare", "hashes": { "sha-256": "sha256:7bdd9156e4b32814653297252bcc06c94a2c922db0b76fdec044d3e7224f0271" }, "subcomponents": [ { "@id": "pkg:apk/minimos/nodejs-20@20.20.2-r2" } ] } ], "status": "fixed" }, { "vulnerability": { "name": "MINI-7xm6-82wh-gj9f", "aliases": [ "CVE-2025-15469" ] }, "products": [ { "@id": "pkg:oci/npm-daycare", "hashes": { "sha-256": "sha256:7bdd9156e4b32814653297252bcc06c94a2c922db0b76fdec044d3e7224f0271" }, "subcomponents": [ { "@id": "pkg:apk/minimos/libcrypto3@3.5.7-r0" }, { "@id": "pkg:apk/minimos/libssl3@3.5.7-r0" } ] } ], "status": "fixed" }, { "vulnerability": { "name": "MINI-7xq4-37v3-672q", "aliases": [ "CVE-2025-46394" ] }, "products": [ { "@id": "pkg:oci/npm-daycare", "hashes": { "sha-256": "sha256:7bdd9156e4b32814653297252bcc06c94a2c922db0b76fdec044d3e7224f0271" }, "subcomponents": [ { "@id": "pkg:apk/minimos/busybox@1.37.0-r7" } ] } ], "status": "fixed" }, { "vulnerability": { "name": "MINI-83x8-ph53-37j4", "aliases": [ "CVE-2026-32289" ] }, "products": [ { "@id": "pkg:oci/npm-daycare", "hashes": { "sha-256": "sha256:7bdd9156e4b32814653297252bcc06c94a2c922db0b76fdec044d3e7224f0271" }, "subcomponents": [ { "@id": "pkg:apk/minimos/verdaccio@6.7.4-r0" } ] } ], "status": "fixed" }, { "vulnerability": { "name": "MINI-845q-xgmp-88m9", "aliases": [ "CVE-2025-61724" ] }, "products": [ { "@id": "pkg:oci/npm-daycare", "hashes": { "sha-256": "sha256:7bdd9156e4b32814653297252bcc06c94a2c922db0b76fdec044d3e7224f0271" }, "subcomponents": [ { "@id": "pkg:apk/minimos/verdaccio@6.7.4-r0" } ] } ], "status": "fixed" }, { "vulnerability": { "name": "MINI-858c-3xg5-prww", "aliases": [ "CVE-2026-27606" ] }, "products": [ { "@id": "pkg:oci/npm-daycare", "hashes": { "sha-256": "sha256:7bdd9156e4b32814653297252bcc06c94a2c922db0b76fdec044d3e7224f0271" }, "subcomponents": [ { "@id": "pkg:apk/minimos/verdaccio@6.7.4-r0" } ] } ], "status": "fixed" }, { "vulnerability": { "name": "MINI-85p5-p97c-w7m9", "aliases": [ "CVE-2025-56200" ] }, "products": [ { "@id": "pkg:oci/npm-daycare", "hashes": { "sha-256": "sha256:7bdd9156e4b32814653297252bcc06c94a2c922db0b76fdec044d3e7224f0271" }, "subcomponents": [ { "@id": "pkg:apk/minimos/verdaccio@6.7.4-r0" } ] } ], "status": "fixed" }, { "vulnerability": { "name": "MINI-868q-9vqj-rvq8", "aliases": [ "CVE-2026-33811" ] }, "products": [ { "@id": "pkg:oci/npm-daycare", "hashes": { "sha-256": "sha256:7bdd9156e4b32814653297252bcc06c94a2c922db0b76fdec044d3e7224f0271" }, "subcomponents": [ { "@id": "pkg:apk/minimos/verdaccio@6.7.4-r0" } ] } ], "status": "fixed" }, { "vulnerability": { "name": "MINI-87jm-7399-5qx7", "aliases": [ "CVE-2025-47912" ] }, "products": [ { "@id": "pkg:oci/npm-daycare", "hashes": { "sha-256": "sha256:7bdd9156e4b32814653297252bcc06c94a2c922db0b76fdec044d3e7224f0271" }, "subcomponents": [ { "@id": "pkg:apk/minimos/verdaccio@6.7.4-r0" } ] } ], "status": "fixed" }, { "vulnerability": { "name": "MINI-8c4r-xw62-v98q", "aliases": [ "CVE-2025-58751" ] }, "products": [ { "@id": "pkg:oci/npm-daycare", "hashes": { "sha-256": "sha256:7bdd9156e4b32814653297252bcc06c94a2c922db0b76fdec044d3e7224f0271" }, "subcomponents": [ { "@id": "pkg:apk/minimos/verdaccio@6.7.4-r0" } ] } ], "status": "fixed" }, { "vulnerability": { "name": "MINI-8ccc-42j9-wq95", "aliases": [ "CVE-2025-9232" ] }, "products": [ { "@id": "pkg:oci/npm-daycare", "hashes": { "sha-256": "sha256:7bdd9156e4b32814653297252bcc06c94a2c922db0b76fdec044d3e7224f0271" }, "subcomponents": [ { "@id": "pkg:apk/minimos/libcrypto3@3.5.7-r0" }, { "@id": "pkg:apk/minimos/libssl3@3.5.7-r0" } ] } ], "status": "fixed" }, { "vulnerability": { "name": "MINI-8f3x-wm75-6446", "aliases": [ "CVE-2024-52005" ] }, "products": [ { "@id": "pkg:oci/npm-daycare", "hashes": { "sha-256": "sha256:7bdd9156e4b32814653297252bcc06c94a2c922db0b76fdec044d3e7224f0271" }, "subcomponents": [ { "@id": "pkg:apk/minimos/git@2.54.0-r0" } ] } ], "status": "fixed" }, { "vulnerability": { "name": "MINI-8fq4-p7r9-vcm5", "aliases": [ "CVE-2010-4756" ] }, "products": [ { "@id": "pkg:oci/npm-daycare", "hashes": { "sha-256": "sha256:7bdd9156e4b32814653297252bcc06c94a2c922db0b76fdec044d3e7224f0271" }, "subcomponents": [ { "@id": "pkg:apk/minimos/glibc@2.43-r4" }, { "@id": "pkg:apk/minimos/glibc-locale-posix@2.43-r4" }, { "@id": "pkg:apk/minimos/ld-linux@2.43-r4" }, { "@id": "pkg:apk/minimos/posix-libc-utils@2.43-r4" } ] } ], "status": "not_affected", "justification": "vulnerable_code_not_present", "impact_statement": "The CVE in glibc is not considered a vulnerability by most distributions. Glibc implements glob according to POSIX standards, which do not guarantee memory safety. Network facing services should sanitize the inputs to glob, or configure resource limits." }, { "vulnerability": { "name": "MINI-8m63-4qgj-hq3w", "aliases": [ "GHSA-442j-39wm-28r2" ] }, "products": [ { "@id": "pkg:oci/npm-daycare", "hashes": { "sha-256": "sha256:7bdd9156e4b32814653297252bcc06c94a2c922db0b76fdec044d3e7224f0271" }, "subcomponents": [ { "@id": "pkg:apk/minimos/verdaccio@6.7.4-r0" } ] } ], "status": "fixed" }, { "vulnerability": { "name": "MINI-8mv2-hvr9-qw76", "aliases": [ "CVE-2026-34180" ] }, "products": [ { "@id": "pkg:oci/npm-daycare", "hashes": { "sha-256": "sha256:7bdd9156e4b32814653297252bcc06c94a2c922db0b76fdec044d3e7224f0271" }, "subcomponents": [ { "@id": "pkg:apk/minimos/libcrypto3@3.5.7-r0" }, { "@id": "pkg:apk/minimos/libssl3@3.5.7-r0" } ] } ], "status": "fixed" }, { "vulnerability": { "name": "MINI-8qf7-3jq4-43w3", "aliases": [ "CVE-2025-5702" ] }, "products": [ { "@id": "pkg:oci/npm-daycare", "hashes": { "sha-256": "sha256:7bdd9156e4b32814653297252bcc06c94a2c922db0b76fdec044d3e7224f0271" }, "subcomponents": [ { "@id": "pkg:apk/minimos/glibc@2.43-r4" }, { "@id": "pkg:apk/minimos/glibc-locale-posix@2.43-r4" }, { "@id": "pkg:apk/minimos/ld-linux@2.43-r4" }, { "@id": "pkg:apk/minimos/posix-libc-utils@2.43-r4" } ] } ], "status": "not_affected", "justification": "component_not_present", "impact_statement": "The CVE is specific to PowerPC environments and it does not affect Minimus packages." }, { "vulnerability": { "name": "MINI-9482-2jh4-39pv", "aliases": [ "CVE-2026-6238" ] }, "products": [ { "@id": "pkg:oci/npm-daycare", "hashes": { "sha-256": "sha256:7bdd9156e4b32814653297252bcc06c94a2c922db0b76fdec044d3e7224f0271" }, "subcomponents": [ { "@id": "pkg:apk/minimos/glibc@2.43-r4" }, { "@id": "pkg:apk/minimos/glibc-locale-posix@2.43-r4" }, { "@id": "pkg:apk/minimos/ld-linux@2.43-r4" }, { "@id": "pkg:apk/minimos/posix-libc-utils@2.43-r4" } ] } ], "status": "fixed" }, { "vulnerability": { "name": "MINI-97hj-4cjr-rwf9", "aliases": [ "CVE-2026-32282" ] }, "products": [ { "@id": "pkg:oci/npm-daycare", "hashes": { "sha-256": "sha256:7bdd9156e4b32814653297252bcc06c94a2c922db0b76fdec044d3e7224f0271" }, "subcomponents": [ { "@id": "pkg:apk/minimos/verdaccio@6.7.4-r0" } ] } ], "status": "fixed" }, { "vulnerability": { "name": "MINI-97px-33gj-7h87", "aliases": [ "CVE-2026-45149" ] }, "products": [ { "@id": "pkg:oci/npm-daycare", "hashes": { "sha-256": "sha256:7bdd9156e4b32814653297252bcc06c94a2c922db0b76fdec044d3e7224f0271" }, "subcomponents": [ { "@id": "pkg:apk/minimos/verdaccio@6.7.4-r0" } ] } ], "status": "affected", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-45149/references" }, { "vulnerability": { "name": "MINI-98vj-rh27-mv3g", "aliases": [ "CVE-2024-11053" ] }, "products": [ { "@id": "pkg:oci/npm-daycare", "hashes": { "sha-256": "sha256:7bdd9156e4b32814653297252bcc06c94a2c922db0b76fdec044d3e7224f0271" }, "subcomponents": [ { "@id": "pkg:apk/minimos/libcurl-openssl4@8.20.0-r0" } ] } ], "status": "fixed" }, { "vulnerability": { "name": "MINI-9cqq-j3fp-3v58", "aliases": [ "CVE-2026-0775" ] }, "products": [ { "@id": "pkg:oci/npm-daycare", "hashes": { "sha-256": "sha256:7bdd9156e4b32814653297252bcc06c94a2c922db0b76fdec044d3e7224f0271" }, "subcomponents": [ { "@id": "pkg:apk/minimos/npm@11.17.0-r0" } ] } ], "status": "fixed" }, { "vulnerability": { "name": "MINI-9j4f-68fw-mr3h", "aliases": [ "CVE-2026-33672" ] }, "products": [ { "@id": "pkg:oci/npm-daycare", "hashes": { "sha-256": "sha256:7bdd9156e4b32814653297252bcc06c94a2c922db0b76fdec044d3e7224f0271" }, "subcomponents": [ { "@id": "pkg:apk/minimos/verdaccio@6.7.4-r0" } ] } ], "status": "affected", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-33672/references" }, { "vulnerability": { "name": "MINI-9p7h-6f7r-988m", "aliases": [ "CVE-2025-0665" ] }, "products": [ { "@id": "pkg:oci/npm-daycare", "hashes": { "sha-256": "sha256:7bdd9156e4b32814653297252bcc06c94a2c922db0b76fdec044d3e7224f0271" }, "subcomponents": [ { "@id": "pkg:apk/minimos/libcurl-openssl4@8.20.0-r0" } ] } ], "status": "fixed" }, { "vulnerability": { "name": "MINI-9pw9-7q9c-mmjj", "aliases": [ "CVE-2026-42769" ] }, "products": [ { "@id": "pkg:oci/npm-daycare", "hashes": { "sha-256": "sha256:7bdd9156e4b32814653297252bcc06c94a2c922db0b76fdec044d3e7224f0271" }, "subcomponents": [ { "@id": "pkg:apk/minimos/libcrypto3@3.5.7-r0" }, { "@id": "pkg:apk/minimos/libssl3@3.5.7-r0" } ] } ], "status": "fixed" }, { "vulnerability": { "name": "MINI-9q6r-wh3r-gg9m", "aliases": [ "CVE-2026-6276" ] }, "products": [ { "@id": "pkg:oci/npm-daycare", "hashes": { "sha-256": "sha256:7bdd9156e4b32814653297252bcc06c94a2c922db0b76fdec044d3e7224f0271" }, "subcomponents": [ { "@id": "pkg:apk/minimos/libcurl-openssl4@8.20.0-r0" } ] } ], "status": "fixed" }, { "vulnerability": { "name": "MINI-9rp5-4p8h-2xf8", "aliases": [ "CVE-2026-24842" ] }, "products": [ { "@id": "pkg:oci/npm-daycare", "hashes": { "sha-256": "sha256:7bdd9156e4b32814653297252bcc06c94a2c922db0b76fdec044d3e7224f0271" }, "subcomponents": [ { "@id": "pkg:apk/minimos/npm@11.17.0-r0" } ] } ], "status": "fixed" }, { "vulnerability": { "name": "MINI-9v7j-p2w9-8fvj", "aliases": [ "CVE-2025-59465" ] }, "products": [ { "@id": "pkg:oci/npm-daycare", "hashes": { "sha-256": "sha256:7bdd9156e4b32814653297252bcc06c94a2c922db0b76fdec044d3e7224f0271" }, "subcomponents": [ { "@id": "pkg:apk/minimos/nodejs-20@20.20.2-r2" } ] } ], "status": "fixed" }, { "vulnerability": { "name": "MINI-9w5m-f95v-57hf", "aliases": [ "CVE-2024-58251" ] }, "products": [ { "@id": "pkg:oci/npm-daycare", "hashes": { "sha-256": "sha256:7bdd9156e4b32814653297252bcc06c94a2c922db0b76fdec044d3e7224f0271" }, "subcomponents": [ { "@id": "pkg:apk/minimos/busybox@1.37.0-r7" } ] } ], "status": "fixed" }, { "vulnerability": { "name": "MINI-9wj9-v876-v8x9", "aliases": [ "CVE-2025-10148" ] }, "products": [ { "@id": "pkg:oci/npm-daycare", "hashes": { "sha-256": "sha256:7bdd9156e4b32814653297252bcc06c94a2c922db0b76fdec044d3e7224f0271" }, "subcomponents": [ { "@id": "pkg:apk/minimos/libcurl-openssl4@8.20.0-r0" } ] } ], "status": "fixed" }, { "vulnerability": { "name": "MINI-9wr8-2m24-p869", "aliases": [ "CVE-2025-64118" ] }, "products": [ { "@id": "pkg:oci/npm-daycare", "hashes": { "sha-256": "sha256:7bdd9156e4b32814653297252bcc06c94a2c922db0b76fdec044d3e7224f0271" }, "subcomponents": [ { "@id": "pkg:apk/minimos/npm@11.17.0-r0" } ] } ], "status": "fixed" }, { "vulnerability": { "name": "MINI-9x7c-882f-gc36", "aliases": [ "CVE-2019-1010022" ] }, "products": [ { "@id": "pkg:oci/npm-daycare", "hashes": { "sha-256": "sha256:7bdd9156e4b32814653297252bcc06c94a2c922db0b76fdec044d3e7224f0271" }, "subcomponents": [ { "@id": "pkg:apk/minimos/glibc@2.43-r4" }, { "@id": "pkg:apk/minimos/glibc-locale-posix@2.43-r4" }, { "@id": "pkg:apk/minimos/ld-linux@2.43-r4" }, { "@id": "pkg:apk/minimos/posix-libc-utils@2.43-r4" } ] } ], "status": "not_affected", "justification": "vulnerable_code_not_present", "impact_statement": "The CVE is disputed and the upstream project has determined it does not pose a risk." }, { "vulnerability": { "name": "MINI-c2qm-45cv-hv74", "aliases": [ "CVE-2026-42767" ] }, "products": [ { "@id": "pkg:oci/npm-daycare", "hashes": { "sha-256": "sha256:7bdd9156e4b32814653297252bcc06c94a2c922db0b76fdec044d3e7224f0271" }, "subcomponents": [ { "@id": "pkg:apk/minimos/libcrypto3@3.5.7-r0" }, { "@id": "pkg:apk/minimos/libssl3@3.5.7-r0" } ] } ], "status": "fixed" }, { "vulnerability": { "name": "MINI-c657-76x8-f7pf", "aliases": [ "CVE-2026-33940" ] }, "products": [ { "@id": "pkg:oci/npm-daycare", "hashes": { "sha-256": "sha256:7bdd9156e4b32814653297252bcc06c94a2c922db0b76fdec044d3e7224f0271" }, "subcomponents": [ { "@id": "pkg:apk/minimos/verdaccio@6.7.4-r0" } ] } ], "status": "fixed" }, { "vulnerability": { "name": "MINI-c73v-v84q-fmgc", "aliases": [ "CVE-2025-13034" ] }, "products": [ { "@id": "pkg:oci/npm-daycare", "hashes": { "sha-256": "sha256:7bdd9156e4b32814653297252bcc06c94a2c922db0b76fdec044d3e7224f0271" }, "subcomponents": [ { "@id": "pkg:apk/minimos/libcurl-openssl4@8.20.0-r0" } ] } ], "status": "fixed" }, { "vulnerability": { "name": "MINI-cgvf-3w8p-hxpg", "aliases": [ "CVE-2026-45447" ] }, "products": [ { "@id": "pkg:oci/npm-daycare", "hashes": { "sha-256": "sha256:7bdd9156e4b32814653297252bcc06c94a2c922db0b76fdec044d3e7224f0271" }, "subcomponents": [ { "@id": "pkg:apk/minimos/libcrypto3@3.5.7-r0" }, { "@id": "pkg:apk/minimos/libssl3@3.5.7-r0" } ] } ], "status": "fixed" }, { "vulnerability": { "name": "MINI-chpf-2h62-9rj8", "aliases": [ "CVE-2025-68121" ] }, "products": [ { "@id": "pkg:oci/npm-daycare", "hashes": { "sha-256": "sha256:7bdd9156e4b32814653297252bcc06c94a2c922db0b76fdec044d3e7224f0271" }, "subcomponents": [ { "@id": "pkg:apk/minimos/verdaccio@6.7.4-r0" } ] } ], "status": "not_affected", "justification": "vulnerable_code_not_present", "impact_statement": "This CVE does not affect Verdaccio in runtime." }, { "vulnerability": { "name": "MINI-cj2c-q547-3m6v", "aliases": [ "CVE-2026-45149" ] }, "products": [ { "@id": "pkg:oci/npm-daycare", "hashes": { "sha-256": "sha256:7bdd9156e4b32814653297252bcc06c94a2c922db0b76fdec044d3e7224f0271" }, "subcomponents": [ { "@id": "pkg:apk/minimos/npm@11.17.0-r0" } ] } ], "status": "fixed" }, { "vulnerability": { "name": "MINI-cmmm-vp98-cjhp", "aliases": [ "CVE-2026-5450" ] }, "products": [ { "@id": "pkg:oci/npm-daycare", "hashes": { "sha-256": "sha256:7bdd9156e4b32814653297252bcc06c94a2c922db0b76fdec044d3e7224f0271" }, "subcomponents": [ { "@id": "pkg:apk/minimos/glibc@2.43-r4" }, { "@id": "pkg:apk/minimos/glibc-locale-posix@2.43-r4" }, { "@id": "pkg:apk/minimos/ld-linux@2.43-r4" }, { "@id": "pkg:apk/minimos/posix-libc-utils@2.43-r4" } ] } ], "status": "fixed" }, { "vulnerability": { "name": "MINI-cp3r-rp4g-f926", "aliases": [ "CVE-2026-11824" ] }, "products": [ { "@id": "pkg:oci/npm-daycare", "hashes": { "sha-256": "sha256:7bdd9156e4b32814653297252bcc06c94a2c922db0b76fdec044d3e7224f0271" }, "subcomponents": [ { "@id": "pkg:apk/minimos/sqlite-libs@3.53.2-r0" } ] } ], "status": "fixed" }, { "vulnerability": { "name": "MINI-cp7h-4rrx-6w93", "aliases": [ "CVE-2025-58189" ] }, "products": [ { "@id": "pkg:oci/npm-daycare", "hashes": { "sha-256": "sha256:7bdd9156e4b32814653297252bcc06c94a2c922db0b76fdec044d3e7224f0271" }, "subcomponents": [ { "@id": "pkg:apk/minimos/verdaccio@6.7.4-r0" } ] } ], "status": "fixed" }, { "vulnerability": { "name": "MINI-cqv8-h4hv-gqgj", "aliases": [ "CVE-2025-4947" ] }, "products": [ { "@id": "pkg:oci/npm-daycare", "hashes": { "sha-256": "sha256:7bdd9156e4b32814653297252bcc06c94a2c922db0b76fdec044d3e7224f0271" }, "subcomponents": [ { "@id": "pkg:apk/minimos/libcurl-openssl4@8.20.0-r0" } ] } ], "status": "fixed" }, { "vulnerability": { "name": "MINI-cw62-rmhf-xrgj", "aliases": [ "CVE-2025-58752" ] }, "products": [ { "@id": "pkg:oci/npm-daycare", "hashes": { "sha-256": "sha256:7bdd9156e4b32814653297252bcc06c94a2c922db0b76fdec044d3e7224f0271" }, "subcomponents": [ { "@id": "pkg:apk/minimos/verdaccio@6.7.4-r0" } ] } ], "status": "fixed" }, { "vulnerability": { "name": "MINI-f2c6-3h5c-f2f4", "aliases": [ "CVE-2025-4674" ] }, "products": [ { "@id": "pkg:oci/npm-daycare", "hashes": { "sha-256": "sha256:7bdd9156e4b32814653297252bcc06c94a2c922db0b76fdec044d3e7224f0271" }, "subcomponents": [ { "@id": "pkg:apk/minimos/verdaccio@6.7.4-r0" } ] } ], "status": "not_affected", "justification": "vulnerable_code_not_present", "impact_statement": "esbuild does not invoke the go command thus a false-positive" }, { "vulnerability": { "name": "MINI-f8ph-64mq-x9g3", "aliases": [ "CVE-2026-25679" ] }, "products": [ { "@id": "pkg:oci/npm-daycare", "hashes": { "sha-256": "sha256:7bdd9156e4b32814653297252bcc06c94a2c922db0b76fdec044d3e7224f0271" }, "subcomponents": [ { "@id": "pkg:apk/minimos/verdaccio@6.7.4-r0" } ] } ], "status": "not_affected", "justification": "vulnerable_code_not_present", "impact_statement": "This CVE does not affect Verdaccio in runtime." }, { "vulnerability": { "name": "MINI-f9p3-f44v-h6ww", "aliases": [ "CVE-2025-23083" ] }, "products": [ { "@id": "pkg:oci/npm-daycare", "hashes": { "sha-256": "sha256:7bdd9156e4b32814653297252bcc06c94a2c922db0b76fdec044d3e7224f0271" }, "subcomponents": [ { "@id": "pkg:apk/minimos/nodejs-20@20.20.2-r2" } ] } ], "status": "fixed" }, { "vulnerability": { "name": "MINI-f9qm-gx9g-pp9f", "aliases": [ "CVE-2025-69419" ] }, "products": [ { "@id": "pkg:oci/npm-daycare", "hashes": { "sha-256": "sha256:7bdd9156e4b32814653297252bcc06c94a2c922db0b76fdec044d3e7224f0271" }, "subcomponents": [ { "@id": "pkg:apk/minimos/libcrypto3@3.5.7-r0" }, { "@id": "pkg:apk/minimos/libssl3@3.5.7-r0" } ] } ], "status": "fixed" }, { "vulnerability": { "name": "MINI-fcfp-f47m-6hff", "aliases": [ "CVE-2026-24001" ] }, "products": [ { "@id": "pkg:oci/npm-daycare", "hashes": { "sha-256": "sha256:7bdd9156e4b32814653297252bcc06c94a2c922db0b76fdec044d3e7224f0271" }, "subcomponents": [ { "@id": "pkg:apk/minimos/npm@11.17.0-r0" } ] } ], "status": "fixed" }, { "vulnerability": { "name": "MINI-fg85-78mg-4566", "aliases": [ "CVE-2025-4575" ] }, "products": [ { "@id": "pkg:oci/npm-daycare", "hashes": { "sha-256": "sha256:7bdd9156e4b32814653297252bcc06c94a2c922db0b76fdec044d3e7224f0271" }, "subcomponents": [ { "@id": "pkg:apk/minimos/libcrypto3@3.5.7-r0" }, { "@id": "pkg:apk/minimos/libssl3@3.5.7-r0" } ] } ], "status": "fixed" }, { "vulnerability": { "name": "MINI-fjgf-3rf4-f8px", "aliases": [ "CVE-2026-6429" ] }, "products": [ { "@id": "pkg:oci/npm-daycare", "hashes": { "sha-256": "sha256:7bdd9156e4b32814653297252bcc06c94a2c922db0b76fdec044d3e7224f0271" }, "subcomponents": [ { "@id": "pkg:apk/minimos/libcurl-openssl4@8.20.0-r0" } ] } ], "status": "fixed" }, { "vulnerability": { "name": "MINI-g2hq-g6c7-r9mx", "aliases": [ "CVE-2025-64756" ] }, "products": [ { "@id": "pkg:oci/npm-daycare", "hashes": { "sha-256": "sha256:7bdd9156e4b32814653297252bcc06c94a2c922db0b76fdec044d3e7224f0271" }, "subcomponents": [ { "@id": "pkg:apk/minimos/verdaccio@6.7.4-r0" } ] } ], "status": "fixed" }, { "vulnerability": { "name": "MINI-g7cc-x2q6-h92p", "aliases": [ "CVE-2025-61728" ] }, "products": [ { "@id": "pkg:oci/npm-daycare", "hashes": { "sha-256": "sha256:7bdd9156e4b32814653297252bcc06c94a2c922db0b76fdec044d3e7224f0271" }, "subcomponents": [ { "@id": "pkg:apk/minimos/verdaccio@6.7.4-r0" } ] } ], "status": "not_affected", "justification": "vulnerable_code_not_present", "impact_statement": "This CVE does not affect Verdaccio in runtime." }, { "vulnerability": { "name": "MINI-g7q3-hfpv-pq46", "aliases": [ "CVE-2026-32283" ] }, "products": [ { "@id": "pkg:oci/npm-daycare", "hashes": { "sha-256": "sha256:7bdd9156e4b32814653297252bcc06c94a2c922db0b76fdec044d3e7224f0271" }, "subcomponents": [ { "@id": "pkg:apk/minimos/verdaccio@6.7.4-r0" } ] } ], "status": "fixed" }, { "vulnerability": { "name": "MINI-g87p-ghhm-p895", "aliases": [ "CVE-2026-39836" ] }, "products": [ { "@id": "pkg:oci/npm-daycare", "hashes": { "sha-256": "sha256:7bdd9156e4b32814653297252bcc06c94a2c922db0b76fdec044d3e7224f0271" }, "subcomponents": [ { "@id": "pkg:apk/minimos/verdaccio@6.7.4-r0" } ] } ], "status": "fixed" }, { "vulnerability": { "name": "MINI-g95j-3hj7-663j", "aliases": [ "CVE-2026-39365" ] }, "products": [ { "@id": "pkg:oci/npm-daycare", "hashes": { "sha-256": "sha256:7bdd9156e4b32814653297252bcc06c94a2c922db0b76fdec044d3e7224f0271" }, "subcomponents": [ { "@id": "pkg:apk/minimos/verdaccio@6.7.4-r0" } ] } ], "status": "fixed" }, { "vulnerability": { "name": "MINI-g9cm-48c2-9hrq", "aliases": [ "CVE-2026-33938" ] }, "products": [ { "@id": "pkg:oci/npm-daycare", "hashes": { "sha-256": "sha256:7bdd9156e4b32814653297252bcc06c94a2c922db0b76fdec044d3e7224f0271" }, "subcomponents": [ { "@id": "pkg:apk/minimos/verdaccio@6.7.4-r0" } ] } ], "status": "fixed" }, { "vulnerability": { "name": "MINI-gcj6-97px-4qxj", "aliases": [ "CVE-2024-51999" ] }, "products": [ { "@id": "pkg:oci/npm-daycare", "hashes": { "sha-256": "sha256:7bdd9156e4b32814653297252bcc06c94a2c922db0b76fdec044d3e7224f0271" }, "subcomponents": [ { "@id": "pkg:apk/minimos/verdaccio@6.7.4-r0" } ] } ], "status": "affected", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2024-51999/references" }, { "vulnerability": { "name": "MINI-gf7q-pwf6-rv36", "aliases": [ "CVE-2026-3805" ] }, "products": [ { "@id": "pkg:oci/npm-daycare", "hashes": { "sha-256": "sha256:7bdd9156e4b32814653297252bcc06c94a2c922db0b76fdec044d3e7224f0271" }, "subcomponents": [ { "@id": "pkg:apk/minimos/libcurl-openssl4@8.20.0-r0" } ] } ], "status": "fixed" }, { "vulnerability": { "name": "MINI-ggqv-3w5g-76qx", "aliases": [ "CVE-2026-4437" ] }, "products": [ { "@id": "pkg:oci/npm-daycare", "hashes": { "sha-256": "sha256:7bdd9156e4b32814653297252bcc06c94a2c922db0b76fdec044d3e7224f0271" }, "subcomponents": [ { "@id": "pkg:apk/minimos/glibc@2.43-r4" }, { "@id": "pkg:apk/minimos/glibc-locale-posix@2.43-r4" }, { "@id": "pkg:apk/minimos/ld-linux@2.43-r4" }, { "@id": "pkg:apk/minimos/posix-libc-utils@2.43-r4" } ] } ], "status": "fixed" }, { "vulnerability": { "name": "MINI-ggx4-pq98-pp6p", "aliases": [ "GHSA-7rx3-28cr-v5wh" ] }, "products": [ { "@id": "pkg:oci/npm-daycare", "hashes": { "sha-256": "sha256:7bdd9156e4b32814653297252bcc06c94a2c922db0b76fdec044d3e7224f0271" }, "subcomponents": [ { "@id": "pkg:apk/minimos/verdaccio@6.7.4-r0" } ] } ], "status": "fixed" }, { "vulnerability": { "name": "MINI-ghq7-pw6r-63ff", "aliases": [ "CVE-2026-44724" ] }, "products": [ { "@id": "pkg:oci/npm-daycare", "hashes": { "sha-256": "sha256:7bdd9156e4b32814653297252bcc06c94a2c922db0b76fdec044d3e7224f0271" }, "subcomponents": [ { "@id": "pkg:apk/minimos/verdaccio@6.7.4-r0" } ] } ], "status": "affected", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-44724/references" }, { "vulnerability": { "name": "MINI-gj37-h88h-xr99", "aliases": [ "CVE-2026-11525" ] }, "products": [ { "@id": "pkg:oci/npm-daycare", "hashes": { "sha-256": "sha256:7bdd9156e4b32814653297252bcc06c94a2c922db0b76fdec044d3e7224f0271" }, "subcomponents": [ { "@id": "pkg:apk/minimos/npm@11.17.0-r0" } ] } ], "status": "under_investigation" }, { "vulnerability": { "name": "MINI-gv9f-9gp6-rwmj", "aliases": [ "CVE-2026-21716" ] }, "products": [ { "@id": "pkg:oci/npm-daycare", "hashes": { "sha-256": "sha256:7bdd9156e4b32814653297252bcc06c94a2c922db0b76fdec044d3e7224f0271" }, "subcomponents": [ { "@id": "pkg:apk/minimos/nodejs-20@20.20.2-r2" } ] } ], "status": "fixed" }, { "vulnerability": { "name": "MINI-h4jq-xcr6-grr6", "aliases": [ "CVE-2026-5773" ] }, "products": [ { "@id": "pkg:oci/npm-daycare", "hashes": { "sha-256": "sha256:7bdd9156e4b32814653297252bcc06c94a2c922db0b76fdec044d3e7224f0271" }, "subcomponents": [ { "@id": "pkg:apk/minimos/libcurl-openssl4@8.20.0-r0" } ] } ], "status": "fixed" }, { "vulnerability": { "name": "MINI-h4q5-969g-r925", "aliases": [ "CVE-2026-21717" ] }, "products": [ { "@id": "pkg:oci/npm-daycare", "hashes": { "sha-256": "sha256:7bdd9156e4b32814653297252bcc06c94a2c922db0b76fdec044d3e7224f0271" }, "subcomponents": [ { "@id": "pkg:apk/minimos/nodejs-20@20.20.2-r2" } ] } ], "status": "fixed" }, { "vulnerability": { "name": "MINI-h554-5xj6-wrxh", "aliases": [ "CVE-2025-11187" ] }, "products": [ { "@id": "pkg:oci/npm-daycare", "hashes": { "sha-256": "sha256:7bdd9156e4b32814653297252bcc06c94a2c922db0b76fdec044d3e7224f0271" }, "subcomponents": [ { "@id": "pkg:apk/minimos/libcrypto3@3.5.7-r0" }, { "@id": "pkg:apk/minimos/libssl3@3.5.7-r0" } ] } ], "status": "fixed" }, { "vulnerability": { "name": "MINI-h7v8-pj76-49cr", "aliases": [ "CVE-2025-12816" ] }, "products": [ { "@id": "pkg:oci/npm-daycare", "hashes": { "sha-256": "sha256:7bdd9156e4b32814653297252bcc06c94a2c922db0b76fdec044d3e7224f0271" }, "subcomponents": [ { "@id": "pkg:apk/minimos/verdaccio@6.7.4-r0" } ] } ], "status": "fixed" }, { "vulnerability": { "name": "MINI-h86j-p3w4-fqpf", "aliases": [ "CVE-2026-11822" ] }, "products": [ { "@id": "pkg:oci/npm-daycare", "hashes": { "sha-256": "sha256:7bdd9156e4b32814653297252bcc06c94a2c922db0b76fdec044d3e7224f0271" }, "subcomponents": [ { "@id": "pkg:apk/minimos/sqlite-libs@3.53.2-r0" } ] } ], "status": "fixed" }, { "vulnerability": { "name": "MINI-hmgf-hq9g-mjm5", "aliases": [ "CVE-2026-39363" ] }, "products": [ { "@id": "pkg:oci/npm-daycare", "hashes": { "sha-256": "sha256:7bdd9156e4b32814653297252bcc06c94a2c922db0b76fdec044d3e7224f0271" }, "subcomponents": [ { "@id": "pkg:apk/minimos/verdaccio@6.7.4-r0" } ] } ], "status": "fixed" }, { "vulnerability": { "name": "MINI-hr2r-23m4-p79q", "aliases": [ "CVE-2025-5889" ] }, "products": [ { "@id": "pkg:oci/npm-daycare", "hashes": { "sha-256": "sha256:7bdd9156e4b32814653297252bcc06c94a2c922db0b76fdec044d3e7224f0271" }, "subcomponents": [ { "@id": "pkg:apk/minimos/verdaccio@6.7.4-r0" } ] } ], "status": "affected", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2025-5889/references" }, { "vulnerability": { "name": "MINI-hrcm-pm9w-c85m", "aliases": [ "CVE-2026-27144" ] }, "products": [ { "@id": "pkg:oci/npm-daycare", "hashes": { "sha-256": "sha256:7bdd9156e4b32814653297252bcc06c94a2c922db0b76fdec044d3e7224f0271" }, "subcomponents": [ { "@id": "pkg:apk/minimos/verdaccio@6.7.4-r0" } ] } ], "status": "fixed" }, { "vulnerability": { "name": "MINI-hrr9-5jqm-32g4", "aliases": [ "CVE-2026-28390" ] }, "products": [ { "@id": "pkg:oci/npm-daycare", "hashes": { "sha-256": "sha256:7bdd9156e4b32814653297252bcc06c94a2c922db0b76fdec044d3e7224f0271" }, "subcomponents": [ { "@id": "pkg:apk/minimos/libcrypto3@3.5.7-r0" }, { "@id": "pkg:apk/minimos/libssl3@3.5.7-r0" } ] } ], "status": "fixed" }, { "vulnerability": { "name": "MINI-hrrg-xpmx-8mjr", "aliases": [ "CVE-2026-3784" ] }, "products": [ { "@id": "pkg:oci/npm-daycare", "hashes": { "sha-256": "sha256:7bdd9156e4b32814653297252bcc06c94a2c922db0b76fdec044d3e7224f0271" }, "subcomponents": [ { "@id": "pkg:apk/minimos/libcurl-openssl4@8.20.0-r0" } ] } ], "status": "fixed" }, { "vulnerability": { "name": "MINI-hw24-mf7w-9fwh", "aliases": [ "CVE-2026-34183" ] }, "products": [ { "@id": "pkg:oci/npm-daycare", "hashes": { "sha-256": "sha256:7bdd9156e4b32814653297252bcc06c94a2c922db0b76fdec044d3e7224f0271" }, "subcomponents": [ { "@id": "pkg:apk/minimos/libcrypto3@3.5.7-r0" }, { "@id": "pkg:apk/minimos/libssl3@3.5.7-r0" } ] } ], "status": "fixed" }, { "vulnerability": { "name": "MINI-hwjj-mj9h-qh5g", "aliases": [ "CVE-2026-27171" ] }, "products": [ { "@id": "pkg:oci/npm-daycare", "hashes": { "sha-256": "sha256:7bdd9156e4b32814653297252bcc06c94a2c922db0b76fdec044d3e7224f0271" }, "subcomponents": [ { "@id": "pkg:apk/minimos/zlib@1.3.2-r1" } ] } ], "status": "fixed" }, { "vulnerability": { "name": "MINI-j2ww-3wf3-g9v9", "aliases": [ "CVE-2026-27142" ] }, "products": [ { "@id": "pkg:oci/npm-daycare", "hashes": { "sha-256": "sha256:7bdd9156e4b32814653297252bcc06c94a2c922db0b76fdec044d3e7224f0271" }, "subcomponents": [ { "@id": "pkg:apk/minimos/verdaccio@6.7.4-r0" } ] } ], "status": "not_affected", "justification": "vulnerable_code_not_present", "impact_statement": "This CVE does not affect Verdaccio in runtime." }, { "vulnerability": { "name": "MINI-j384-f4q6-cfjg", "aliases": [ "CVE-2024-12797" ] }, "products": [ { "@id": "pkg:oci/npm-daycare", "hashes": { "sha-256": "sha256:7bdd9156e4b32814653297252bcc06c94a2c922db0b76fdec044d3e7224f0271" }, "subcomponents": [ { "@id": "pkg:apk/minimos/libcrypto3@3.5.7-r0" }, { "@id": "pkg:apk/minimos/libssl3@3.5.7-r0" } ] } ], "status": "fixed" }, { "vulnerability": { "name": "MINI-j535-83c7-qjhc", "aliases": [ "CVE-2025-61729" ] }, "products": [ { "@id": "pkg:oci/npm-daycare", "hashes": { "sha-256": "sha256:7bdd9156e4b32814653297252bcc06c94a2c922db0b76fdec044d3e7224f0271" }, "subcomponents": [ { "@id": "pkg:apk/minimos/verdaccio@6.7.4-r0" } ] } ], "status": "fixed" }, { "vulnerability": { "name": "MINI-j53j-532g-vf6q", "aliases": [ "CVE-2026-27135" ] }, "products": [ { "@id": "pkg:oci/npm-daycare", "hashes": { "sha-256": "sha256:7bdd9156e4b32814653297252bcc06c94a2c922db0b76fdec044d3e7224f0271" }, "subcomponents": [ { "@id": "pkg:apk/minimos/libnghttp2-14@1.69.0-r0" } ] } ], "status": "fixed" }, { "vulnerability": { "name": "MINI-jf68-c428-p2q8", "aliases": [ "CVE-2026-28388" ] }, "products": [ { "@id": "pkg:oci/npm-daycare", "hashes": { "sha-256": "sha256:7bdd9156e4b32814653297252bcc06c94a2c922db0b76fdec044d3e7224f0271" }, "subcomponents": [ { "@id": "pkg:apk/minimos/libcrypto3@3.5.7-r0" }, { "@id": "pkg:apk/minimos/libssl3@3.5.7-r0" } ] } ], "status": "fixed" }, { "vulnerability": { "name": "MINI-jf6q-gfm8-75qp", "aliases": [ "CVE-2025-61730" ] }, "products": [ { "@id": "pkg:oci/npm-daycare", "hashes": { "sha-256": "sha256:7bdd9156e4b32814653297252bcc06c94a2c922db0b76fdec044d3e7224f0271" }, "subcomponents": [ { "@id": "pkg:apk/minimos/verdaccio@6.7.4-r0" } ] } ], "status": "not_affected", "justification": "vulnerable_code_not_present", "impact_statement": "This CVE does not affect Verdaccio in runtime." }, { "vulnerability": { "name": "MINI-jjq2-7f8f-8frj", "aliases": [ "CVE-2026-53655" ] }, "products": [ { "@id": "pkg:oci/npm-daycare", "hashes": { "sha-256": "sha256:7bdd9156e4b32814653297252bcc06c94a2c922db0b76fdec044d3e7224f0271" }, "subcomponents": [ { "@id": "pkg:apk/minimos/npm@11.17.0-r0" } ] } ], "status": "fixed" }, { "vulnerability": { "name": "MINI-jmmw-4597-rmjp", "aliases": [ "CVE-2019-1010023" ] }, "products": [ { "@id": "pkg:oci/npm-daycare", "hashes": { "sha-256": "sha256:7bdd9156e4b32814653297252bcc06c94a2c922db0b76fdec044d3e7224f0271" }, "subcomponents": [ { "@id": "pkg:apk/minimos/glibc@2.43-r4" }, { "@id": "pkg:apk/minimos/glibc-locale-posix@2.43-r4" }, { "@id": "pkg:apk/minimos/ld-linux@2.43-r4" }, { "@id": "pkg:apk/minimos/posix-libc-utils@2.43-r4" } ] } ], "status": "not_affected", "justification": "vulnerable_code_not_present", "impact_statement": "The CVE is disputed and the upstream project has determined it does not pose a risk." }, { "vulnerability": { "name": "MINI-jqmr-9x6x-w3q4", "aliases": [ "CVE-2025-61731" ] }, "products": [ { "@id": "pkg:oci/npm-daycare", "hashes": { "sha-256": "sha256:7bdd9156e4b32814653297252bcc06c94a2c922db0b76fdec044d3e7224f0271" }, "subcomponents": [ { "@id": "pkg:apk/minimos/verdaccio@6.7.4-r0" } ] } ], "status": "not_affected", "justification": "vulnerable_code_not_present", "impact_statement": "This CVE does not affect Verdaccio in runtime." }, { "vulnerability": { "name": "MINI-jqq5-fqrr-m8cm", "aliases": [ "CVE-2025-47906" ] }, "products": [ { "@id": "pkg:oci/npm-daycare", "hashes": { "sha-256": "sha256:7bdd9156e4b32814653297252bcc06c94a2c922db0b76fdec044d3e7224f0271" }, "subcomponents": [ { "@id": "pkg:apk/minimos/verdaccio@6.7.4-r0" } ] } ], "status": "not_affected", "justification": "vulnerable_code_not_present" }, { "vulnerability": { "name": "MINI-jr7c-wwp4-6jw7", "aliases": [ "CVE-2026-23950" ] }, "products": [ { "@id": "pkg:oci/npm-daycare", "hashes": { "sha-256": "sha256:7bdd9156e4b32814653297252bcc06c94a2c922db0b76fdec044d3e7224f0271" }, "subcomponents": [ { "@id": "pkg:apk/minimos/npm@11.17.0-r0" } ] } ], "status": "fixed" }, { "vulnerability": { "name": "MINI-jr9p-322p-258c", "aliases": [ "CVE-2026-47429" ] }, "products": [ { "@id": "pkg:oci/npm-daycare", "hashes": { "sha-256": "sha256:7bdd9156e4b32814653297252bcc06c94a2c922db0b76fdec044d3e7224f0271" }, "subcomponents": [ { "@id": "pkg:apk/minimos/verdaccio@6.7.4-r0" } ] } ], "status": "fixed" }, { "vulnerability": { "name": "MINI-jrmj-9f3h-wrh5", "aliases": [ "CVE-2026-28389" ] }, "products": [ { "@id": "pkg:oci/npm-daycare", "hashes": { "sha-256": "sha256:7bdd9156e4b32814653297252bcc06c94a2c922db0b76fdec044d3e7224f0271" }, "subcomponents": [ { "@id": "pkg:apk/minimos/libcrypto3@3.5.7-r0" }, { "@id": "pkg:apk/minimos/libssl3@3.5.7-r0" } ] } ], "status": "fixed" }, { "vulnerability": { "name": "MINI-jv5f-h7mm-q8cr", "aliases": [ "CVE-2026-42499" ] }, "products": [ { "@id": "pkg:oci/npm-daycare", "hashes": { "sha-256": "sha256:7bdd9156e4b32814653297252bcc06c94a2c922db0b76fdec044d3e7224f0271" }, "subcomponents": [ { "@id": "pkg:apk/minimos/verdaccio@6.7.4-r0" } ] } ], "status": "fixed" }, { "vulnerability": { "name": "MINI-jv5q-pv59-w2fc", "aliases": [ "CVE-2025-12758" ] }, "products": [ { "@id": "pkg:oci/npm-daycare", "hashes": { "sha-256": "sha256:7bdd9156e4b32814653297252bcc06c94a2c922db0b76fdec044d3e7224f0271" }, "subcomponents": [ { "@id": "pkg:apk/minimos/verdaccio@6.7.4-r0" } ] } ], "status": "fixed" }, { "vulnerability": { "name": "MINI-m3mg-3rgp-gf4g", "aliases": [ "CVE-2026-33894" ] }, "products": [ { "@id": "pkg:oci/npm-daycare", "hashes": { "sha-256": "sha256:7bdd9156e4b32814653297252bcc06c94a2c922db0b76fdec044d3e7224f0271" }, "subcomponents": [ { "@id": "pkg:apk/minimos/verdaccio@6.7.4-r0" } ] } ], "status": "fixed" }, { "vulnerability": { "name": "MINI-m3rp-p6hw-2pjc", "aliases": [ "CVE-2026-27139" ] }, "products": [ { "@id": "pkg:oci/npm-daycare", "hashes": { "sha-256": "sha256:7bdd9156e4b32814653297252bcc06c94a2c922db0b76fdec044d3e7224f0271" }, "subcomponents": [ { "@id": "pkg:apk/minimos/verdaccio@6.7.4-r0" } ] } ], "status": "not_affected", "justification": "vulnerable_code_not_present", "impact_statement": "This CVE does not affect Verdaccio in runtime." }, { "vulnerability": { "name": "MINI-m4mg-ph2m-rg43", "aliases": [ "CVE-2026-33896" ] }, "products": [ { "@id": "pkg:oci/npm-daycare", "hashes": { "sha-256": "sha256:7bdd9156e4b32814653297252bcc06c94a2c922db0b76fdec044d3e7224f0271" }, "subcomponents": [ { "@id": "pkg:apk/minimos/verdaccio@6.7.4-r0" } ] } ], "status": "fixed" }, { "vulnerability": { "name": "MINI-m4rh-v3hc-pgr4", "aliases": [ "CVE-2026-27143" ] }, "products": [ { "@id": "pkg:oci/npm-daycare", "hashes": { "sha-256": "sha256:7bdd9156e4b32814653297252bcc06c94a2c922db0b76fdec044d3e7224f0271" }, "subcomponents": [ { "@id": "pkg:apk/minimos/verdaccio@6.7.4-r0" } ] } ], "status": "not_affected", "justification": "component_not_present" }, { "vulnerability": { "name": "MINI-m4vx-fgw5-x393", "aliases": [ "CVE-2026-44705" ] }, "products": [ { "@id": "pkg:oci/npm-daycare", "hashes": { "sha-256": "sha256:7bdd9156e4b32814653297252bcc06c94a2c922db0b76fdec044d3e7224f0271" }, "subcomponents": [ { "@id": "pkg:apk/minimos/verdaccio@6.7.4-r0" } ] } ], "status": "affected", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-44705/references" }, { "vulnerability": { "name": "MINI-m8jj-632g-59cq", "aliases": [ "CVE-2026-2673" ] }, "products": [ { "@id": "pkg:oci/npm-daycare", "hashes": { "sha-256": "sha256:7bdd9156e4b32814653297252bcc06c94a2c922db0b76fdec044d3e7224f0271" }, "subcomponents": [ { "@id": "pkg:apk/minimos/libcrypto3@3.5.7-r0" }, { "@id": "pkg:apk/minimos/libssl3@3.5.7-r0" } ] } ], "status": "fixed" }, { "vulnerability": { "name": "MINI-m8w4-cwhg-vxhq", "aliases": [ "CVE-2025-66031" ] }, "products": [ { "@id": "pkg:oci/npm-daycare", "hashes": { "sha-256": "sha256:7bdd9156e4b32814653297252bcc06c94a2c922db0b76fdec044d3e7224f0271" }, "subcomponents": [ { "@id": "pkg:apk/minimos/verdaccio@6.7.4-r0" } ] } ], "status": "fixed" }, { "vulnerability": { "name": "MINI-mgc9-4rpq-57xp", "aliases": [ "CVE-2025-66199" ] }, "products": [ { "@id": "pkg:oci/npm-daycare", "hashes": { "sha-256": "sha256:7bdd9156e4b32814653297252bcc06c94a2c922db0b76fdec044d3e7224f0271" }, "subcomponents": [ { "@id": "pkg:apk/minimos/libcrypto3@3.5.7-r0" }, { "@id": "pkg:apk/minimos/libssl3@3.5.7-r0" } ] } ], "status": "fixed" }, { "vulnerability": { "name": "MINI-mmv8-x232-j4px", "aliases": [ "CVE-2026-39824" ] }, "products": [ { "@id": "pkg:oci/npm-daycare", "hashes": { "sha-256": "sha256:7bdd9156e4b32814653297252bcc06c94a2c922db0b76fdec044d3e7224f0271" }, "subcomponents": [ { "@id": "pkg:apk/minimos/verdaccio@6.7.4-r0" } ] } ], "status": "fixed" }, { "vulnerability": { "name": "MINI-mp2m-wjv9-45g9", "aliases": [ "CVE-2025-15468" ] }, "products": [ { "@id": "pkg:oci/npm-daycare", "hashes": { "sha-256": "sha256:7bdd9156e4b32814653297252bcc06c94a2c922db0b76fdec044d3e7224f0271" }, "subcomponents": [ { "@id": "pkg:apk/minimos/libcrypto3@3.5.7-r0" }, { "@id": "pkg:apk/minimos/libssl3@3.5.7-r0" } ] } ], "status": "fixed" }, { "vulnerability": { "name": "MINI-mq2j-hv64-mc7v", "aliases": [ "CVE-2026-49356" ] }, "products": [ { "@id": "pkg:oci/npm-daycare", "hashes": { "sha-256": "sha256:7bdd9156e4b32814653297252bcc06c94a2c922db0b76fdec044d3e7224f0271" }, "subcomponents": [ { "@id": "pkg:apk/minimos/verdaccio@6.7.4-r0" } ] } ], "status": "fixed" }, { "vulnerability": { "name": "MINI-mrv5-8224-xc5w", "aliases": [ "CVE-2026-44728" ] }, "products": [ { "@id": "pkg:oci/npm-daycare", "hashes": { "sha-256": "sha256:7bdd9156e4b32814653297252bcc06c94a2c922db0b76fdec044d3e7224f0271" }, "subcomponents": [ { "@id": "pkg:apk/minimos/verdaccio@6.7.4-r0" } ] } ], "status": "fixed" }, { "vulnerability": { "name": "MINI-mvr8-jj4r-pmpr", "aliases": [ "CVE-2025-62522" ] }, "products": [ { "@id": "pkg:oci/npm-daycare", "hashes": { "sha-256": "sha256:7bdd9156e4b32814653297252bcc06c94a2c922db0b76fdec044d3e7224f0271" }, "subcomponents": [ { "@id": "pkg:apk/minimos/verdaccio@6.7.4-r0" } ] } ], "status": "not_affected", "justification": "vulnerable_code_not_present", "impact_statement": "This CVE affects Windows hosts, thus not relevant" }, { "vulnerability": { "name": "MINI-mwmc-c375-m54v", "aliases": [ "CVE-2026-5545" ] }, "products": [ { "@id": "pkg:oci/npm-daycare", "hashes": { "sha-256": "sha256:7bdd9156e4b32814653297252bcc06c94a2c922db0b76fdec044d3e7224f0271" }, "subcomponents": [ { "@id": "pkg:apk/minimos/libcurl-openssl4@8.20.0-r0" } ] } ], "status": "fixed" }, { "vulnerability": { "name": "MINI-mxh7-mw93-fg88", "aliases": [ "CVE-2025-15467" ] }, "products": [ { "@id": "pkg:oci/npm-daycare", "hashes": { "sha-256": "sha256:7bdd9156e4b32814653297252bcc06c94a2c922db0b76fdec044d3e7224f0271" }, "subcomponents": [ { "@id": "pkg:apk/minimos/libcrypto3@3.5.7-r0" }, { "@id": "pkg:apk/minimos/libssl3@3.5.7-r0" } ] } ], "status": "fixed" }, { "vulnerability": { "name": "MINI-p349-8v38-9vpq", "aliases": [ "CVE-2026-27145" ] }, "products": [ { "@id": "pkg:oci/npm-daycare", "hashes": { "sha-256": "sha256:7bdd9156e4b32814653297252bcc06c94a2c922db0b76fdec044d3e7224f0271" }, "subcomponents": [ { "@id": "pkg:apk/minimos/verdaccio@6.7.4-r0" } ] } ], "status": "fixed" }, { "vulnerability": { "name": "MINI-p3gx-8wr6-33v2", "aliases": [ "CVE-2025-57319" ] }, "products": [ { "@id": "pkg:oci/npm-daycare", "hashes": { "sha-256": "sha256:7bdd9156e4b32814653297252bcc06c94a2c922db0b76fdec044d3e7224f0271" }, "subcomponents": [ { "@id": "pkg:apk/minimos/verdaccio@6.7.4-r0" } ] } ], "status": "fixed" }, { "vulnerability": { "name": "MINI-pfgv-278h-86h7", "aliases": [ "CVE-2025-58185" ] }, "products": [ { "@id": "pkg:oci/npm-daycare", "hashes": { "sha-256": "sha256:7bdd9156e4b32814653297252bcc06c94a2c922db0b76fdec044d3e7224f0271" }, "subcomponents": [ { "@id": "pkg:apk/minimos/verdaccio@6.7.4-r0" } ] } ], "status": "fixed" }, { "vulnerability": { "name": "MINI-pgm4-r82v-jm54", "aliases": [ "CVE-2026-33750" ] }, "products": [ { "@id": "pkg:oci/npm-daycare", "hashes": { "sha-256": "sha256:7bdd9156e4b32814653297252bcc06c94a2c922db0b76fdec044d3e7224f0271" }, "subcomponents": [ { "@id": "pkg:apk/minimos/verdaccio@6.7.4-r0" } ] } ], "status": "affected", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-33750/references" }, { "vulnerability": { "name": "MINI-pgvx-g3gc-xf38", "aliases": [ "CVE-2025-5889" ] }, "products": [ { "@id": "pkg:oci/npm-daycare", "hashes": { "sha-256": "sha256:7bdd9156e4b32814653297252bcc06c94a2c922db0b76fdec044d3e7224f0271" }, "subcomponents": [ { "@id": "pkg:apk/minimos/npm@11.17.0-r0" } ] } ], "status": "fixed" }, { "vulnerability": { "name": "MINI-phc3-7qpg-76g2", "aliases": [ "CVE-2025-15281" ] }, "products": [ { "@id": "pkg:oci/npm-daycare", "hashes": { "sha-256": "sha256:7bdd9156e4b32814653297252bcc06c94a2c922db0b76fdec044d3e7224f0271" }, "subcomponents": [ { "@id": "pkg:apk/minimos/glibc@2.43-r4" }, { "@id": "pkg:apk/minimos/glibc-locale-posix@2.43-r4" }, { "@id": "pkg:apk/minimos/ld-linux@2.43-r4" }, { "@id": "pkg:apk/minimos/posix-libc-utils@2.43-r4" } ] } ], "status": "fixed" }, { "vulnerability": { "name": "MINI-pp4h-f74w-w939", "aliases": [ "CVE-2026-42764" ] }, "products": [ { "@id": "pkg:oci/npm-daycare", "hashes": { "sha-256": "sha256:7bdd9156e4b32814653297252bcc06c94a2c922db0b76fdec044d3e7224f0271" }, "subcomponents": [ { "@id": "pkg:apk/minimos/libcrypto3@3.5.7-r0" }, { "@id": "pkg:apk/minimos/libssl3@3.5.7-r0" } ] } ], "status": "fixed" }, { "vulnerability": { "name": "MINI-ppm5-3j96-36r2", "aliases": [ "CVE-2025-5399" ] }, "products": [ { "@id": "pkg:oci/npm-daycare", "hashes": { "sha-256": "sha256:7bdd9156e4b32814653297252bcc06c94a2c922db0b76fdec044d3e7224f0271" }, "subcomponents": [ { "@id": "pkg:apk/minimos/libcurl-openssl4@8.20.0-r0" } ] } ], "status": "fixed" }, { "vulnerability": { "name": "MINI-pr9c-2v5q-34m2", "aliases": [ "CVE-2025-5745" ] }, "products": [ { "@id": "pkg:oci/npm-daycare", "hashes": { "sha-256": "sha256:7bdd9156e4b32814653297252bcc06c94a2c922db0b76fdec044d3e7224f0271" }, "subcomponents": [ { "@id": "pkg:apk/minimos/glibc@2.43-r4" }, { "@id": "pkg:apk/minimos/glibc-locale-posix@2.43-r4" }, { "@id": "pkg:apk/minimos/ld-linux@2.43-r4" }, { "@id": "pkg:apk/minimos/posix-libc-utils@2.43-r4" } ] } ], "status": "not_affected", "justification": "component_not_present", "impact_statement": "The CVE is specific to PowerPC environments and it does not affect Minimus packages." }, { "vulnerability": { "name": "MINI-pvjh-pp7v-7gp4", "aliases": [ "CVE-2026-33814" ] }, "products": [ { "@id": "pkg:oci/npm-daycare", "hashes": { "sha-256": "sha256:7bdd9156e4b32814653297252bcc06c94a2c922db0b76fdec044d3e7224f0271" }, "subcomponents": [ { "@id": "pkg:apk/minimos/verdaccio@6.7.4-r0" } ] } ], "status": "fixed" }, { "vulnerability": { "name": "MINI-pw5h-m2w9-cpmr", "aliases": [ "CVE-2026-4867" ] }, "products": [ { "@id": "pkg:oci/npm-daycare", "hashes": { "sha-256": "sha256:7bdd9156e4b32814653297252bcc06c94a2c922db0b76fdec044d3e7224f0271" }, "subcomponents": [ { "@id": "pkg:apk/minimos/verdaccio@6.7.4-r0" } ] } ], "status": "fixed" }, { "vulnerability": { "name": "MINI-pxxf-6g45-6962", "aliases": [ "CVE-2026-31789" ] }, "products": [ { "@id": "pkg:oci/npm-daycare", "hashes": { "sha-256": "sha256:7bdd9156e4b32814653297252bcc06c94a2c922db0b76fdec044d3e7224f0271" }, "subcomponents": [ { "@id": "pkg:apk/minimos/libcrypto3@3.5.7-r0" }, { "@id": "pkg:apk/minimos/libssl3@3.5.7-r0" } ] } ], "status": "fixed" }, { "vulnerability": { "name": "MINI-q7xg-3898-58j3", "aliases": [ "CVE-2025-58188" ] }, "products": [ { "@id": "pkg:oci/npm-daycare", "hashes": { "sha-256": "sha256:7bdd9156e4b32814653297252bcc06c94a2c922db0b76fdec044d3e7224f0271" }, "subcomponents": [ { "@id": "pkg:apk/minimos/verdaccio@6.7.4-r0" } ] } ], "status": "fixed" }, { "vulnerability": { "name": "MINI-q86x-4f29-q5jr", "aliases": [ "CVE-2025-58050" ] }, "products": [ { "@id": "pkg:oci/npm-daycare", "hashes": { "sha-256": "sha256:7bdd9156e4b32814653297252bcc06c94a2c922db0b76fdec044d3e7224f0271" }, "subcomponents": [ { "@id": "pkg:apk/minimos/libpcre2-8-0@10.47-r0" } ] } ], "status": "fixed" }, { "vulnerability": { "name": "MINI-q9v8-c3m8-7fwp", "aliases": [ "CVE-2025-61726" ] }, "products": [ { "@id": "pkg:oci/npm-daycare", "hashes": { "sha-256": "sha256:7bdd9156e4b32814653297252bcc06c94a2c922db0b76fdec044d3e7224f0271" }, "subcomponents": [ { "@id": "pkg:apk/minimos/verdaccio@6.7.4-r0" } ] } ], "status": "not_affected", "justification": "vulnerable_code_not_present", "impact_statement": "This CVE does not affect Verdaccio in runtime." }, { "vulnerability": { "name": "MINI-qcmg-7qhj-rr3v", "aliases": [ "CVE-2025-58187" ] }, "products": [ { "@id": "pkg:oci/npm-daycare", "hashes": { "sha-256": "sha256:7bdd9156e4b32814653297252bcc06c94a2c922db0b76fdec044d3e7224f0271" }, "subcomponents": [ { "@id": "pkg:apk/minimos/verdaccio@6.7.4-r0" } ] } ], "status": "fixed" }, { "vulnerability": { "name": "MINI-qg2w-mv6w-hjxw", "aliases": [ "CVE-2025-69418" ] }, "products": [ { "@id": "pkg:oci/npm-daycare", "hashes": { "sha-256": "sha256:7bdd9156e4b32814653297252bcc06c94a2c922db0b76fdec044d3e7224f0271" }, "subcomponents": [ { "@id": "pkg:apk/minimos/libcrypto3@3.5.7-r0" }, { "@id": "pkg:apk/minimos/libssl3@3.5.7-r0" } ] } ], "status": "fixed" }, { "vulnerability": { "name": "MINI-qg6h-2m68-9vvh", "aliases": [ "CVE-2025-14819" ] }, "products": [ { "@id": "pkg:oci/npm-daycare", "hashes": { "sha-256": "sha256:7bdd9156e4b32814653297252bcc06c94a2c922db0b76fdec044d3e7224f0271" }, "subcomponents": [ { "@id": "pkg:apk/minimos/libcurl-openssl4@8.20.0-r0" } ] } ], "status": "fixed" }, { "vulnerability": { "name": "MINI-qmg9-49pc-pfm9", "aliases": [ "CVE-2026-39825" ] }, "products": [ { "@id": "pkg:oci/npm-daycare", "hashes": { "sha-256": "sha256:7bdd9156e4b32814653297252bcc06c94a2c922db0b76fdec044d3e7224f0271" }, "subcomponents": [ { "@id": "pkg:apk/minimos/verdaccio@6.7.4-r0" } ] } ], "status": "fixed" }, { "vulnerability": { "name": "MINI-qw5j-w5m9-x9w7", "aliases": [ "CVE-2025-0913" ] }, "products": [ { "@id": "pkg:oci/npm-daycare", "hashes": { "sha-256": "sha256:7bdd9156e4b32814653297252bcc06c94a2c922db0b76fdec044d3e7224f0271" }, "subcomponents": [ { "@id": "pkg:apk/minimos/verdaccio@6.7.4-r0" } ] } ], "status": "not_affected", "justification": "vulnerable_code_not_present", "impact_statement": "Not relevant due to it is a Windows related vulnerability" }, { "vulnerability": { "name": "MINI-r33f-6v8q-73xr", "aliases": [ "CVE-2026-42501" ] }, "products": [ { "@id": "pkg:oci/npm-daycare", "hashes": { "sha-256": "sha256:7bdd9156e4b32814653297252bcc06c94a2c922db0b76fdec044d3e7224f0271" }, "subcomponents": [ { "@id": "pkg:apk/minimos/verdaccio@6.7.4-r0" } ] } ], "status": "fixed" }, { "vulnerability": { "name": "MINI-r58g-4c9h-634m", "aliases": [ "CVE-2026-41907" ] }, "products": [ { "@id": "pkg:oci/npm-daycare", "hashes": { "sha-256": "sha256:7bdd9156e4b32814653297252bcc06c94a2c922db0b76fdec044d3e7224f0271" }, "subcomponents": [ { "@id": "pkg:apk/minimos/verdaccio@6.7.4-r0" } ] } ], "status": "affected", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-41907/references" }, { "vulnerability": { "name": "MINI-r5x8-hhfx-4867", "aliases": [ "CVE-2019-1010024" ] }, "products": [ { "@id": "pkg:oci/npm-daycare", "hashes": { "sha-256": "sha256:7bdd9156e4b32814653297252bcc06c94a2c922db0b76fdec044d3e7224f0271" }, "subcomponents": [ { "@id": "pkg:apk/minimos/glibc@2.43-r4" }, { "@id": "pkg:apk/minimos/glibc-locale-posix@2.43-r4" }, { "@id": "pkg:apk/minimos/ld-linux@2.43-r4" }, { "@id": "pkg:apk/minimos/posix-libc-utils@2.43-r4" } ] } ], "status": "not_affected", "justification": "vulnerable_code_not_present", "impact_statement": "The CVE is disputed and the upstream project has determined it does not pose a risk." }, { "vulnerability": { "name": "MINI-r7vg-g62m-xr5g", "aliases": [ "CVE-2026-21710" ] }, "products": [ { "@id": "pkg:oci/npm-daycare", "hashes": { "sha-256": "sha256:7bdd9156e4b32814653297252bcc06c94a2c922db0b76fdec044d3e7224f0271" }, "subcomponents": [ { "@id": "pkg:apk/minimos/nodejs-20@20.20.2-r2" } ] } ], "status": "fixed" }, { "vulnerability": { "name": "MINI-r9qx-42mv-59qj", "aliases": [ "CVE-2026-27903" ] }, "products": [ { "@id": "pkg:oci/npm-daycare", "hashes": { "sha-256": "sha256:7bdd9156e4b32814653297252bcc06c94a2c922db0b76fdec044d3e7224f0271" }, "subcomponents": [ { "@id": "pkg:apk/minimos/npm@11.17.0-r0" } ] } ], "status": "fixed" }, { "vulnerability": { "name": "MINI-rc9g-46wh-49ff", "aliases": [ "CVE-2026-2391" ] }, "products": [ { "@id": "pkg:oci/npm-daycare", "hashes": { "sha-256": "sha256:7bdd9156e4b32814653297252bcc06c94a2c922db0b76fdec044d3e7224f0271" }, "subcomponents": [ { "@id": "pkg:apk/minimos/verdaccio@6.7.4-r0" } ] } ], "status": "affected", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-2391/references" }, { "vulnerability": { "name": "MINI-rcc4-gfpp-phxc", "aliases": [ "CVE-2026-6321" ] }, "products": [ { "@id": "pkg:oci/npm-daycare", "hashes": { "sha-256": "sha256:7bdd9156e4b32814653297252bcc06c94a2c922db0b76fdec044d3e7224f0271" }, "subcomponents": [ { "@id": "pkg:apk/minimos/verdaccio@6.7.4-r0" } ] } ], "status": "fixed" }, { "vulnerability": { "name": "MINI-rcgx-hgc5-45fx", "aliases": [ "CVE-2026-45445" ] }, "products": [ { "@id": "pkg:oci/npm-daycare", "hashes": { "sha-256": "sha256:7bdd9156e4b32814653297252bcc06c94a2c922db0b76fdec044d3e7224f0271" }, "subcomponents": [ { "@id": "pkg:apk/minimos/libcrypto3@3.5.7-r0" }, { "@id": "pkg:apk/minimos/libssl3@3.5.7-r0" } ] } ], "status": "fixed" }, { "vulnerability": { "name": "MINI-rf5r-cj3h-3m5g", "aliases": [ "CVE-2026-25547" ] }, "products": [ { "@id": "pkg:oci/npm-daycare", "hashes": { "sha-256": "sha256:7bdd9156e4b32814653297252bcc06c94a2c922db0b76fdec044d3e7224f0271" }, "subcomponents": [ { "@id": "pkg:apk/minimos/npm@11.17.0-r0" } ] } ], "status": "fixed" }, { "vulnerability": { "name": "MINI-rfjw-6mc7-895q", "aliases": [ "CVE-2026-28387" ] }, "products": [ { "@id": "pkg:oci/npm-daycare", "hashes": { "sha-256": "sha256:7bdd9156e4b32814653297252bcc06c94a2c922db0b76fdec044d3e7224f0271" }, "subcomponents": [ { "@id": "pkg:apk/minimos/libcrypto3@3.5.7-r0" }, { "@id": "pkg:apk/minimos/libssl3@3.5.7-r0" } ] } ], "status": "fixed" }, { "vulnerability": { "name": "MINI-rg98-4963-qq59", "aliases": [ "CVE-2026-39817" ] }, "products": [ { "@id": "pkg:oci/npm-daycare", "hashes": { "sha-256": "sha256:7bdd9156e4b32814653297252bcc06c94a2c922db0b76fdec044d3e7224f0271" }, "subcomponents": [ { "@id": "pkg:apk/minimos/verdaccio@6.7.4-r0" } ] } ], "status": "fixed" }, { "vulnerability": { "name": "MINI-rgw6-m9rq-wr8j", "aliases": [ "CVE-2026-0915" ] }, "products": [ { "@id": "pkg:oci/npm-daycare", "hashes": { "sha-256": "sha256:7bdd9156e4b32814653297252bcc06c94a2c922db0b76fdec044d3e7224f0271" }, "subcomponents": [ { "@id": "pkg:apk/minimos/glibc@2.43-r4" }, { "@id": "pkg:apk/minimos/glibc-locale-posix@2.43-r4" }, { "@id": "pkg:apk/minimos/ld-linux@2.43-r4" }, { "@id": "pkg:apk/minimos/posix-libc-utils@2.43-r4" } ] } ], "status": "fixed" }, { "vulnerability": { "name": "MINI-rhc5-hq55-8g57", "aliases": [ "CVE-2025-23165" ] }, "products": [ { "@id": "pkg:oci/npm-daycare", "hashes": { "sha-256": "sha256:7bdd9156e4b32814653297252bcc06c94a2c922db0b76fdec044d3e7224f0271" }, "subcomponents": [ { "@id": "pkg:apk/minimos/nodejs-20@20.20.2-r2" } ] } ], "status": "fixed" }, { "vulnerability": { "name": "MINI-rhfj-8r8r-9755", "aliases": [ "CVE-2026-31790" ] }, "products": [ { "@id": "pkg:oci/npm-daycare", "hashes": { "sha-256": "sha256:7bdd9156e4b32814653297252bcc06c94a2c922db0b76fdec044d3e7224f0271" }, "subcomponents": [ { "@id": "pkg:apk/minimos/libcrypto3@3.5.7-r0" }, { "@id": "pkg:apk/minimos/libssl3@3.5.7-r0" } ] } ], "status": "fixed" }, { "vulnerability": { "name": "MINI-rhgf-5q48-gw9m", "aliases": [ "CVE-2024-21538" ] }, "products": [ { "@id": "pkg:oci/npm-daycare", "hashes": { "sha-256": "sha256:7bdd9156e4b32814653297252bcc06c94a2c922db0b76fdec044d3e7224f0271" }, "subcomponents": [ { "@id": "pkg:apk/minimos/npm@11.17.0-r0" } ] } ], "status": "fixed" }, { "vulnerability": { "name": "MINI-rhqx-49x5-3hv8", "aliases": [ "CVE-2026-9679" ] }, "products": [ { "@id": "pkg:oci/npm-daycare", "hashes": { "sha-256": "sha256:7bdd9156e4b32814653297252bcc06c94a2c922db0b76fdec044d3e7224f0271" }, "subcomponents": [ { "@id": "pkg:apk/minimos/npm@11.17.0-r0" } ] } ], "status": "under_investigation" }, { "vulnerability": { "name": "MINI-rj3h-gp23-63xh", "aliases": [ "CVE-2025-68160" ] }, "products": [ { "@id": "pkg:oci/npm-daycare", "hashes": { "sha-256": "sha256:7bdd9156e4b32814653297252bcc06c94a2c922db0b76fdec044d3e7224f0271" }, "subcomponents": [ { "@id": "pkg:apk/minimos/libcrypto3@3.5.7-r0" }, { "@id": "pkg:apk/minimos/libssl3@3.5.7-r0" } ] } ], "status": "fixed" }, { "vulnerability": { "name": "MINI-rj4p-m987-gc96", "aliases": [ "CVE-2026-33895" ] }, "products": [ { "@id": "pkg:oci/npm-daycare", "hashes": { "sha-256": "sha256:7bdd9156e4b32814653297252bcc06c94a2c922db0b76fdec044d3e7224f0271" }, "subcomponents": [ { "@id": "pkg:apk/minimos/verdaccio@6.7.4-r0" } ] } ], "status": "fixed" }, { "vulnerability": { "name": "MINI-rm23-vwm5-8498", "aliases": [ "CVE-2026-33937" ] }, "products": [ { "@id": "pkg:oci/npm-daycare", "hashes": { "sha-256": "sha256:7bdd9156e4b32814653297252bcc06c94a2c922db0b76fdec044d3e7224f0271" }, "subcomponents": [ { "@id": "pkg:apk/minimos/verdaccio@6.7.4-r0" } ] } ], "status": "fixed" }, { "vulnerability": { "name": "MINI-rmc6-cp56-x7wv", "aliases": [ "CVE-2026-33750" ] }, "products": [ { "@id": "pkg:oci/npm-daycare", "hashes": { "sha-256": "sha256:7bdd9156e4b32814653297252bcc06c94a2c922db0b76fdec044d3e7224f0271" }, "subcomponents": [ { "@id": "pkg:apk/minimos/npm@11.17.0-r0" } ] } ], "status": "fixed" }, { "vulnerability": { "name": "MINI-rmpr-92wq-x9pp", "aliases": [ "CVE-2025-54798" ] }, "products": [ { "@id": "pkg:oci/npm-daycare", "hashes": { "sha-256": "sha256:7bdd9156e4b32814653297252bcc06c94a2c922db0b76fdec044d3e7224f0271" }, "subcomponents": [ { "@id": "pkg:apk/minimos/verdaccio@6.7.4-r0" } ] } ], "status": "fixed" }, { "vulnerability": { "name": "MINI-rpf9-4p9f-qx57", "aliases": [ "CVE-2025-8058" ] }, "products": [ { "@id": "pkg:oci/npm-daycare", "hashes": { "sha-256": "sha256:7bdd9156e4b32814653297252bcc06c94a2c922db0b76fdec044d3e7224f0271" }, "subcomponents": [ { "@id": "pkg:apk/minimos/glibc@2.43-r4" }, { "@id": "pkg:apk/minimos/glibc-locale-posix@2.43-r4" }, { "@id": "pkg:apk/minimos/ld-linux@2.43-r4" }, { "@id": "pkg:apk/minimos/posix-libc-utils@2.43-r4" } ] } ], "status": "fixed" }, { "vulnerability": { "name": "MINI-rr7c-f6vf-8w3x", "aliases": [ "GHSA-gv7w-rqvm-qjhr" ] }, "products": [ { "@id": "pkg:oci/npm-daycare", "hashes": { "sha-256": "sha256:7bdd9156e4b32814653297252bcc06c94a2c922db0b76fdec044d3e7224f0271" }, "subcomponents": [ { "@id": "pkg:apk/minimos/verdaccio@6.7.4-r0" } ] } ], "status": "fixed" }, { "vulnerability": { "name": "MINI-rr82-fgx3-x9ph", "aliases": [ "CVE-2022-45142" ] }, "products": [ { "@id": "pkg:oci/npm-daycare", "hashes": { "sha-256": "sha256:7bdd9156e4b32814653297252bcc06c94a2c922db0b76fdec044d3e7224f0271" }, "subcomponents": [ { "@id": "pkg:apk/minimos/heimdal-libs@7.8.0-r2" } ] } ], "status": "not_affected", "justification": "vulnerable_code_not_present", "impact_statement": "Minimus initial Heimdal package version 7.8.0-r0 was not vulnerable for CVE-2022-45142" }, { "vulnerability": { "name": "MINI-rvp9-2656-5x75", "aliases": [ "CVE-2025-61727" ] }, "products": [ { "@id": "pkg:oci/npm-daycare", "hashes": { "sha-256": "sha256:7bdd9156e4b32814653297252bcc06c94a2c922db0b76fdec044d3e7224f0271" }, "subcomponents": [ { "@id": "pkg:apk/minimos/verdaccio@6.7.4-r0" } ] } ], "status": "fixed" }, { "vulnerability": { "name": "MINI-rvqq-p3hg-hf4h", "aliases": [ "CVE-2026-33228" ] }, "products": [ { "@id": "pkg:oci/npm-daycare", "hashes": { "sha-256": "sha256:7bdd9156e4b32814653297252bcc06c94a2c922db0b76fdec044d3e7224f0271" }, "subcomponents": [ { "@id": "pkg:apk/minimos/verdaccio@6.7.4-r0" } ] } ], "status": "affected", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-33228/references" }, { "vulnerability": { "name": "MINI-rvqx-v349-2h8h", "aliases": [ "CVE-2026-4800" ] }, "products": [ { "@id": "pkg:oci/npm-daycare", "hashes": { "sha-256": "sha256:7bdd9156e4b32814653297252bcc06c94a2c922db0b76fdec044d3e7224f0271" }, "subcomponents": [ { "@id": "pkg:apk/minimos/verdaccio@6.7.4-r0" } ] } ], "status": "affected", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-4800/references" }, { "vulnerability": { "name": "MINI-rx89-v4q9-hj5j", "aliases": [ "CVE-2026-27140" ] }, "products": [ { "@id": "pkg:oci/npm-daycare", "hashes": { "sha-256": "sha256:7bdd9156e4b32814653297252bcc06c94a2c922db0b76fdec044d3e7224f0271" }, "subcomponents": [ { "@id": "pkg:apk/minimos/verdaccio@6.7.4-r0" } ] } ], "status": "not_affected", "justification": "component_not_present" }, { "vulnerability": { "name": "MINI-v5w4-6m28-fq96", "aliases": [ "CVE-2026-42770" ] }, "products": [ { "@id": "pkg:oci/npm-daycare", "hashes": { "sha-256": "sha256:7bdd9156e4b32814653297252bcc06c94a2c922db0b76fdec044d3e7224f0271" }, "subcomponents": [ { "@id": "pkg:apk/minimos/libcrypto3@3.5.7-r0" }, { "@id": "pkg:apk/minimos/libssl3@3.5.7-r0" } ] } ], "status": "fixed" }, { "vulnerability": { "name": "MINI-v6q8-j2gw-v3xf", "aliases": [ "CVE-2026-21715" ] }, "products": [ { "@id": "pkg:oci/npm-daycare", "hashes": { "sha-256": "sha256:7bdd9156e4b32814653297252bcc06c94a2c922db0b76fdec044d3e7224f0271" }, "subcomponents": [ { "@id": "pkg:apk/minimos/nodejs-20@20.20.2-r2" } ] } ], "status": "fixed" }, { "vulnerability": { "name": "MINI-v7pr-p26w-vc4w", "aliases": [ "CVE-2026-33891" ] }, "products": [ { "@id": "pkg:oci/npm-daycare", "hashes": { "sha-256": "sha256:7bdd9156e4b32814653297252bcc06c94a2c922db0b76fdec044d3e7224f0271" }, "subcomponents": [ { "@id": "pkg:apk/minimos/verdaccio@6.7.4-r0" } ] } ], "status": "fixed" }, { "vulnerability": { "name": "MINI-v7rv-6pjr-7x72", "aliases": [ "CVE-2026-27903" ] }, "products": [ { "@id": "pkg:oci/npm-daycare", "hashes": { "sha-256": "sha256:7bdd9156e4b32814653297252bcc06c94a2c922db0b76fdec044d3e7224f0271" }, "subcomponents": [ { "@id": "pkg:apk/minimos/verdaccio@6.7.4-r0" } ] } ], "status": "affected", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-27903/references" }, { "vulnerability": { "name": "MINI-v932-4r2f-cqgq", "aliases": [ "CVE-2025-5025" ] }, "products": [ { "@id": "pkg:oci/npm-daycare", "hashes": { "sha-256": "sha256:7bdd9156e4b32814653297252bcc06c94a2c922db0b76fdec044d3e7224f0271" }, "subcomponents": [ { "@id": "pkg:apk/minimos/libcurl-openssl4@8.20.0-r0" } ] } ], "status": "fixed" }, { "vulnerability": { "name": "MINI-vcq9-jwg7-42gr", "aliases": [ "CVE-2025-15079" ] }, "products": [ { "@id": "pkg:oci/npm-daycare", "hashes": { "sha-256": "sha256:7bdd9156e4b32814653297252bcc06c94a2c922db0b76fdec044d3e7224f0271" }, "subcomponents": [ { "@id": "pkg:apk/minimos/libcurl-openssl4@8.20.0-r0" } ] } ], "status": "fixed" }, { "vulnerability": { "name": "MINI-vgh4-22cx-ffr7", "aliases": [ "CVE-2024-9681" ] }, "products": [ { "@id": "pkg:oci/npm-daycare", "hashes": { "sha-256": "sha256:7bdd9156e4b32814653297252bcc06c94a2c922db0b76fdec044d3e7224f0271" }, "subcomponents": [ { "@id": "pkg:apk/minimos/libcurl-openssl4@8.20.0-r0" } ] } ], "status": "fixed" }, { "vulnerability": { "name": "MINI-vq8c-vrvw-h2g8", "aliases": [ "CVE-2026-22796" ] }, "products": [ { "@id": "pkg:oci/npm-daycare", "hashes": { "sha-256": "sha256:7bdd9156e4b32814653297252bcc06c94a2c922db0b76fdec044d3e7224f0271" }, "subcomponents": [ { "@id": "pkg:apk/minimos/libcrypto3@3.5.7-r0" }, { "@id": "pkg:apk/minimos/libssl3@3.5.7-r0" } ] } ], "status": "fixed" }, { "vulnerability": { "name": "MINI-vqpm-8q3q-9h4j", "aliases": [ "CVE-2025-6965" ] }, "products": [ { "@id": "pkg:oci/npm-daycare", "hashes": { "sha-256": "sha256:7bdd9156e4b32814653297252bcc06c94a2c922db0b76fdec044d3e7224f0271" }, "subcomponents": [ { "@id": "pkg:apk/minimos/sqlite-libs@3.53.2-r0" } ] } ], "status": "fixed" }, { "vulnerability": { "name": "MINI-vr3g-7rxg-wq23", "aliases": [ "CVE-2025-9086" ] }, "products": [ { "@id": "pkg:oci/npm-daycare", "hashes": { "sha-256": "sha256:7bdd9156e4b32814653297252bcc06c94a2c922db0b76fdec044d3e7224f0271" }, "subcomponents": [ { "@id": "pkg:apk/minimos/libcurl-openssl4@8.20.0-r0" } ] } ], "status": "fixed" }, { "vulnerability": { "name": "MINI-vv3h-fjjg-2373", "aliases": [ "CVE-2026-9076" ] }, "products": [ { "@id": "pkg:oci/npm-daycare", "hashes": { "sha-256": "sha256:7bdd9156e4b32814653297252bcc06c94a2c922db0b76fdec044d3e7224f0271" }, "subcomponents": [ { "@id": "pkg:apk/minimos/libcrypto3@3.5.7-r0" }, { "@id": "pkg:apk/minimos/libssl3@3.5.7-r0" } ] } ], "status": "fixed" }, { "vulnerability": { "name": "MINI-vv9p-q45w-3qm8", "aliases": [ "CVE-2026-4046" ] }, "products": [ { "@id": "pkg:oci/npm-daycare", "hashes": { "sha-256": "sha256:7bdd9156e4b32814653297252bcc06c94a2c922db0b76fdec044d3e7224f0271" }, "subcomponents": [ { "@id": "pkg:apk/minimos/glibc@2.43-r4" }, { "@id": "pkg:apk/minimos/glibc-locale-posix@2.43-r4" }, { "@id": "pkg:apk/minimos/ld-linux@2.43-r4" }, { "@id": "pkg:apk/minimos/posix-libc-utils@2.43-r4" } ] } ], "status": "fixed" }, { "vulnerability": { "name": "MINI-vx6j-9433-mfjf", "aliases": [ "CVE-2025-62408" ] }, "products": [ { "@id": "pkg:oci/npm-daycare", "hashes": { "sha-256": "sha256:7bdd9156e4b32814653297252bcc06c94a2c922db0b76fdec044d3e7224f0271" }, "subcomponents": [ { "@id": "pkg:apk/minimos/c-ares@1.34.6-r0" } ] } ], "status": "fixed" }, { "vulnerability": { "name": "MINI-vxx3-25hf-ffmh", "aliases": [ "CVE-2026-32281" ] }, "products": [ { "@id": "pkg:oci/npm-daycare", "hashes": { "sha-256": "sha256:7bdd9156e4b32814653297252bcc06c94a2c922db0b76fdec044d3e7224f0271" }, "subcomponents": [ { "@id": "pkg:apk/minimos/verdaccio@6.7.4-r0" } ] } ], "status": "fixed" }, { "vulnerability": { "name": "MINI-w2v6-vhhm-p38x", "aliases": [ "CVE-2025-15224" ] }, "products": [ { "@id": "pkg:oci/npm-daycare", "hashes": { "sha-256": "sha256:7bdd9156e4b32814653297252bcc06c94a2c922db0b76fdec044d3e7224f0271" }, "subcomponents": [ { "@id": "pkg:apk/minimos/libcurl-openssl4@8.20.0-r0" } ] } ], "status": "fixed" }, { "vulnerability": { "name": "MINI-w4p6-33x2-v3jq", "aliases": [ "CVE-2026-22184" ] }, "products": [ { "@id": "pkg:oci/npm-daycare", "hashes": { "sha-256": "sha256:7bdd9156e4b32814653297252bcc06c94a2c922db0b76fdec044d3e7224f0271" }, "subcomponents": [ { "@id": "pkg:apk/minimos/zlib@1.3.2-r1" } ] } ], "status": "not_affected", "justification": "vulnerable_code_not_present", "impact_statement": "This vulnerability was disputed." }, { "vulnerability": { "name": "MINI-w6hf-2pp7-7r8p", "aliases": [ "CVE-2026-31802" ] }, "products": [ { "@id": "pkg:oci/npm-daycare", "hashes": { "sha-256": "sha256:7bdd9156e4b32814653297252bcc06c94a2c922db0b76fdec044d3e7224f0271" }, "subcomponents": [ { "@id": "pkg:apk/minimos/npm@11.17.0-r0" } ] } ], "status": "fixed" }, { "vulnerability": { "name": "MINI-wcw8-8v5r-vh8q", "aliases": [ "CVE-2025-4673" ] }, "products": [ { "@id": "pkg:oci/npm-daycare", "hashes": { "sha-256": "sha256:7bdd9156e4b32814653297252bcc06c94a2c922db0b76fdec044d3e7224f0271" }, "subcomponents": [ { "@id": "pkg:apk/minimos/verdaccio@6.7.4-r0" } ] } ], "status": "not_affected", "justification": "vulnerable_code_not_present" }, { "vulnerability": { "name": "MINI-wg97-869f-5822", "aliases": [ "CVE-2024-50349" ] }, "products": [ { "@id": "pkg:oci/npm-daycare", "hashes": { "sha-256": "sha256:7bdd9156e4b32814653297252bcc06c94a2c922db0b76fdec044d3e7224f0271" }, "subcomponents": [ { "@id": "pkg:apk/minimos/git@2.54.0-r0" } ] } ], "status": "fixed" }, { "vulnerability": { "name": "MINI-wggm-33cc-6qg6", "aliases": [ "CVE-2025-14017" ] }, "products": [ { "@id": "pkg:oci/npm-daycare", "hashes": { "sha-256": "sha256:7bdd9156e4b32814653297252bcc06c94a2c922db0b76fdec044d3e7224f0271" }, "subcomponents": [ { "@id": "pkg:apk/minimos/libcurl-openssl4@8.20.0-r0" } ] } ], "status": "fixed" }, { "vulnerability": { "name": "MINI-wjwx-mxp5-69f6", "aliases": [ "CVE-2025-10966" ] }, "products": [ { "@id": "pkg:oci/npm-daycare", "hashes": { "sha-256": "sha256:7bdd9156e4b32814653297252bcc06c94a2c922db0b76fdec044d3e7224f0271" }, "subcomponents": [ { "@id": "pkg:apk/minimos/libcurl-openssl4@8.20.0-r0" } ] } ], "status": "fixed" }, { "vulnerability": { "name": "MINI-wmh4-3v54-xh2h", "aliases": [ "CVE-2025-58186" ] }, "products": [ { "@id": "pkg:oci/npm-daycare", "hashes": { "sha-256": "sha256:7bdd9156e4b32814653297252bcc06c94a2c922db0b76fdec044d3e7224f0271" }, "subcomponents": [ { "@id": "pkg:apk/minimos/verdaccio@6.7.4-r0" } ] } ], "status": "fixed" }, { "vulnerability": { "name": "MINI-wwhc-x7fr-xqq2", "aliases": [ "CVE-2026-33671" ] }, "products": [ { "@id": "pkg:oci/npm-daycare", "hashes": { "sha-256": "sha256:7bdd9156e4b32814653297252bcc06c94a2c922db0b76fdec044d3e7224f0271" }, "subcomponents": [ { "@id": "pkg:apk/minimos/verdaccio@6.7.4-r0" } ] } ], "status": "affected", "action_statement": "For more context and potential remediation information, review the References tab: https://images.minimus.io/advisories/CVE-2026-33671/references" }, { "vulnerability": { "name": "MINI-wxcq-fcr6-chqx", "aliases": [ "CVE-2026-33939" ] }, "products": [ { "@id": "pkg:oci/npm-daycare", "hashes": { "sha-256": "sha256:7bdd9156e4b32814653297252bcc06c94a2c922db0b76fdec044d3e7224f0271" }, "subcomponents": [ { "@id": "pkg:apk/minimos/verdaccio@6.7.4-r0" } ] } ], "status": "fixed" }, { "vulnerability": { "name": "MINI-x2g7-j7f6-5rx9", "aliases": [ "CVE-2025-64718" ] }, "products": [ { "@id": "pkg:oci/npm-daycare", "hashes": { "sha-256": "sha256:7bdd9156e4b32814653297252bcc06c94a2c922db0b76fdec044d3e7224f0271" }, "subcomponents": [ { "@id": "pkg:apk/minimos/verdaccio@6.7.4-r0" } ] } ], "status": "fixed" }, { "vulnerability": { "name": "MINI-x8h3-9pfv-24mm", "aliases": [ "CVE-2025-61723" ] }, "products": [ { "@id": "pkg:oci/npm-daycare", "hashes": { "sha-256": "sha256:7bdd9156e4b32814653297252bcc06c94a2c922db0b76fdec044d3e7224f0271" }, "subcomponents": [ { "@id": "pkg:apk/minimos/verdaccio@6.7.4-r0" } ] } ], "status": "fixed" }, { "vulnerability": { "name": "MINI-xvq2-8p4m-7v2c", "aliases": [ "CVE-2025-31498" ] }, "products": [ { "@id": "pkg:oci/npm-daycare", "hashes": { "sha-256": "sha256:7bdd9156e4b32814653297252bcc06c94a2c922db0b76fdec044d3e7224f0271" }, "subcomponents": [ { "@id": "pkg:apk/minimos/c-ares@1.34.6-r0" } ] } ], "status": "fixed" }, { "vulnerability": { "name": "MINI-xw4j-54fj-c8q9", "aliases": [ "CVE-2025-0725" ] }, "products": [ { "@id": "pkg:oci/npm-daycare", "hashes": { "sha-256": "sha256:7bdd9156e4b32814653297252bcc06c94a2c922db0b76fdec044d3e7224f0271" }, "subcomponents": [ { "@id": "pkg:apk/minimos/libcurl-openssl4@8.20.0-r0" } ] } ], "status": "fixed" }, { "vulnerability": { "name": "MINI-xxrx-crr8-74g3", "aliases": [ "CVE-2024-9143" ] }, "products": [ { "@id": "pkg:oci/npm-daycare", "hashes": { "sha-256": "sha256:7bdd9156e4b32814653297252bcc06c94a2c922db0b76fdec044d3e7224f0271" }, "subcomponents": [ { "@id": "pkg:apk/minimos/libcrypto3@3.5.7-r0" }, { "@id": "pkg:apk/minimos/libssl3@3.5.7-r0" } ] } ], "status": "fixed" } ] }