npm
semantic-release
5 known vulnerabilities · 0 critical · 1 high
CVE-2020-26226HIGH
Secret disclosure when containing characters that become URI encoded
Published Nov 18, 2020
CVE-2022-31051MEDIUM
Exposure of Sensitive Information to an Unauthorized Actor in semantic-release
Published Jun 9, 2022
MAL-2025-11
Malicious code in semantic-release-dependencies (npm)
Published Jan 2, 2025
MAL-2025-191372
Malicious code in @voiceflow/semantic-release-config (npm)
Published Nov 25, 2025
MAL-2024-9459
Malicious code in semantic-release-commit-rules (npm)
Published Oct 22, 2024
Check your entire dependency tree at onceRun dependency scan →