Add new advisory

TucksonDev · TucksonDev · commit 9a5120875d54 · 2025-11-25T16:57:54.000Z
diff --git a/audit-ci.jsonc b/audit-ci.jsonc
@@ -45,6 +45,8 @@
         // web3-core-subscriptions has a Prototype Pollution vulnerability
         "GHSA-hhf6-3xpg-pggx",
         // js-yaml has prototype pollution in merge (<<)
-        "GHSA-mh29-5h37-fv8m"
+        "GHSA-mh29-5h37-fv8m",
+        // body-parser is vulnerable to denial of service when url encoding is used
+        "GHSA-wqch-xfxh-vrr4"
     ]
   }

Original file line number	Diff line number	Diff line change
`@@ -45,6 +45,8 @@`
`45`	`45`	`// web3-core-subscriptions has a Prototype Pollution vulnerability`
`46`	`46`	`"GHSA-hhf6-3xpg-pggx",`
`47`	`47`	`// js-yaml has prototype pollution in merge (<<)`
`48`		`- "GHSA-mh29-5h37-fv8m"`
	`48`	`+ "GHSA-mh29-5h37-fv8m",`
	`49`	`+ // body-parser is vulnerable to denial of service when url encoding is used`
	`50`	`+ "GHSA-wqch-xfxh-vrr4"`
`49`	`51`	`]`
`50`	`52`	`}`