❗️Scan Warnings: The scan completed with warnings. The integration encountered issues with one or more projects in this repository. Consequently, there may be gaps in the coverage of open-source dependencies used in the repository.

Scan Details Report

npm

https://amplearning.jfrog.io/artifactory/api/npm/amplify-npm

Step	Level	Description	Details
Setting the scanner configuration	⚠Warn	Failure to set private registries, due to an issue with the configuration provided by the user	no "registry" field corresponding to this url was found in the .npmrc files

1 new vulnerabilities were introduced in this branch.

❌ New vulnerabilities:

CVE	Severity	CVSS Score	Vulnerable Library	Suggested Fix	Issue	Reachability
CVE-2024-4067 Path to dependency file: /package.json Path to vulnerable library: /node_modules/micromatch/package.json Dependency Hierarchy: -> sass-1.83.1.tgz (Root Library)    -> watcher-2.5.0.tgz      -> ❌ micromatch-4.0.5.tgz (Vulnerable Library)	Medium	5.3	micromatch-4.0.5.tgz	Upgrade to version: micromatch - 4.0.8	None

Base branch total remaining vulnerabilities: 14
Base branch commit: d78fa6c704e955e6c8c8cfced0439e66cf72809e


Total libraries scanned: 663

Scan token: e44e7defef7e4a879f73d69f0981cf62