OsVault/npm/@keystone-6/core
npm2 critical

@keystone-6/core

4 known vulnerabilities · 2 critical · 0 high

CVE-2022-39382CRITICAL

@keystone-6/core's NODE_ENV defaults to development with esbuild

Published Nov 3, 2022
CVE-2022-39322CRITICAL

Field-level access-control bypass for multiselect field

Published Oct 18, 2022
CVE-2023-40027LOW

When `ui.isAccessAllowed` is `undefined`, the `adminMeta` GraphQL query is publicly accessible

Published Aug 15, 2023
CVE-2026-33326

@keystone-6/core: `isFilterable` bypass via `cursor` parameter in findMany (CVE-2025-46720 incomplete fix)

Published Mar 19, 2026
Check your entire dependency tree at onceRun dependency scan →