npm
matrix-appservice-bridge
2 known vulnerabilities · 0 critical · 0 high
CVE-2023-38691MEDIUM
matrix-appservice-bridge doesn't verify the sub parameter of an openId token exhange, allowing unauthorized access to provisioning APIs
Published Aug 4, 2023
CVE-2021-32659MEDIUM
Automatic room upgrade handling can be used maliciously to bridge a room non-consentually
Published Jun 21, 2021
Check your entire dependency tree at onceRun dependency scan →