CVE | Severity | Pipelines Fix Version | Reason |
---|---|---|---|
High | 1.27.0 | User can cause stack exhaustion using jfrog cli in a step, but this would merely lead to a step failing. | |
High | 1.27.0 | Jfrog cli prevents a max buffer from being passed by the user. | |
Medium | 1.24.0 | Removed node-fetch dependency. |