mirror of
https://github.com/BerriAI/litellm.git
synced 2025-12-06 11:33:26 +08:00
8 lines
323 B
Plaintext
8 lines
323 B
Plaintext
# js-yaml CVE-2025-64718
|
|
# This vulnerability is not applicable because we've forced js-yaml to version 4.1.1
|
|
# via npm overrides in package.json. Trivy incorrectly reports this based on
|
|
# dependency requirements in the lockfile, but the actual installed version is 4.1.1.
|
|
# Verified with: npm list js-yaml
|
|
CVE-2025-64718
|
|
|