Severity
High
Description
Contains a dependency which resolves to a remote HTTP URL which could be used to inject untrusted code and reduce overall package reliability.
Suggestion
Publish the HTTP URL dependency to npm or a private package repository and consume it from there.
Packages with this alert
Command-line interface for building NativeScript projects
Used for cloud support in NativeScript CLI
NeoDash - Neo4j Dashboard Builder
Hello World
Drop in metrics for Next Express JS applications, sent to Graphite.
next config for mobile app
Modal stack for ng-bootstrap
Convert DOM elements to PDF file and download it.