Skip to content

OWASP/cve-lite-cli

v1.7.1 Breaking

This release includes 1 breaking change for platform teams planning a safe upgrade.

Published 1mo Vulnerability Scanning
✓ No known CVEs patched
Read the diff → Tool health → What is this tool? →

✓ No known CVEs patched in this version

Topics

security cve javascript nodejs owasp security-tools

Summary

AI summary

Pre‑release versions are now suppressed as fix targets across all resolution paths.

Full changelog

Fixed

  • Pre-release versions (e.g. -next.*, -beta.*, -alpha.*, -rc.*) are now suppressed as fix targets across all three resolution paths: OSV advisory data, parent upgrade resolution, and direct fix validation. When the only available fixed version is a pre-release, the fix hint shows and no fix command is generated.

Validation

  • npm test
  • npm run build

Breaking Changes

  • Pre‑release versions (e.g. -next.*, -beta.*, -alpha.*, -rc.*) are suppressed as fix targets in OSV advisory data, parent upgrade resolution, and direct fix validation; when only a pre‑release is available the fix hint shows `—` and no fix command is generated.
View diff on GitHub

Weekly OSS security release digest.

The CVE patches and breaking changes that affected production tools this week. One email, every Sunday.

No spam, unsubscribe anytime.

Share this release

Share on X Share on Bluesky

Track OWASP/cve-lite-cli

Get notified when new releases ship.

Sign up free

About OWASP/cve-lite-cli

All releases →

Related context

Beta — feedback welcome: [email protected]