Skip to content

Pull requests: OpenIdentityPlatform/OpenAM

New pull request New
11 Open 621 Closed
11 Open 621 Closed
Author
Filter by author
Loading
Label
Filter by label
Loading
Use alt + click/return to exclude labels
or + click/return for logical OR
Projects
Filter by project
Loading
Milestones
Filter by milestone
Loading
Reviews
Filter by reviews
No reviews Review required Approved review Changes requested
Assignee
Filter by who’s assigned
Assigned to nobody Loading
Sort
Sort by
Newest Oldest Most commented Least commented Recently updated Least recently updated Best match
Most reactions
👍 👎 😄 🎉 😕 ❤️ 🚀 👀

Pull requests list

CVE-2025-64718 js-yaml has prototype pollution in merge (<<) dependencies Pull requests that update a dependency file javascript Pull requests that update Javascript code
#994 opened Apr 14, 2026 by dependabot bot Loading…
CVE-2026-21884 CVE-2026-22029 CVE-2026-22030 React Router SSR XSS in ScrollRestoration ,vulnerable to XSS via Open Redirects, CSRF issue in Action/Server Action Request Processing dependencies Pull requests that update a dependency file javascript Pull requests that update Javascript code
#993 opened Apr 14, 2026 by dependabot bot Loading…
CVE-2026-27606 Rollup 4 has Arbitrary File Write via Path Traversal dependencies Pull requests that update a dependency file javascript Pull requests that update Javascript code
#992 opened Apr 14, 2026 by dependabot bot Loading…
CVE-2026-33228 CVE-2026-32141 Prototype Pollution via parse() in NodeJS flatted, flatted vulnerable to unbounded recursion DoS in parse() revive phase dependencies Pull requests that update a dependency file javascript Pull requests that update Javascript code
#991 opened Apr 14, 2026 by dependabot bot Loading…
CVE-2026-39364 CVE-2026-39365 CVE-2026-39363 CVE-2025-62522 Vite: server.fs.deny bypassed, Path Traversal in Optimized Deps, Vite Vulnerable to Arbitrary File Read via Vite Dev Server WebSocket, server.fs.deny bypass via backslash on Windows dependencies Pull requests that update a dependency file javascript Pull requests that update Javascript code
#990 opened Apr 14, 2026 by dependabot bot Loading…
CVE-2026-4800 CVE-2025-13465 CVE-2026-2950 lodash vulnerable to Code Injection via _.template imports key names, odash has Prototype Pollution Vulnerability in _.unset and _.omit functions dependencies Pull requests that update a dependency file javascript Pull requests that update Javascript code
#989 opened Apr 14, 2026 by dependabot bot Loading…
CVE-2026-29063 Immutable is vulnerable to Prototype Pollution dependencies Pull requests that update a dependency file javascript Pull requests that update Javascript code
#988 opened Apr 14, 2026 by dependabot bot Loading…
CVE-2026-33671 CVE-2026-33672 Picomatch has a ReDoS vulnerability Picomatch: Method Injection in POSIX Character Classes dependencies Pull requests that update a dependency file javascript Pull requests that update Javascript code
#987 opened Apr 14, 2026 by dependabot bot Loading…
CVE-2026-26996 CVE-2026-27903 CVE-2026-27904 minimatch has a ReDoS dependencies Pull requests that update a dependency file javascript Pull requests that update Javascript code
#986 opened Apr 14, 2026 by dependabot bot Loading…
GHSA-r4q5-vmmm-2653 follow-redirects leaks Custom Authentication Headers to Cross-Domain Redirect Targets dependencies Pull requests that update a dependency file javascript Pull requests that update Javascript code
#985 opened Apr 14, 2026 by dependabot bot Loading…
Update opendj.version to 5.0.5-SNAPSHOT
#976 opened Apr 2, 2026 by vharseko Member Draft
ProTip! Filter pull requests by the default branch with base:master.