VYPR

npm package

@apollo/composition

pkg:npm/%40apollo/composition

Vulnerabilities (1)

  • CVE-2025-64530HigNov 13, 2025
    affected < 2.9.5fixed 2.9.5

    Apollo Federation is an architecture for declaratively composing APIs into a unified graph. A vulnerability in versions of Apollo Federation's composition logic prior to 2.9.5, 2.10.4, 2.11.5, and 2.12.1 allowed some queries to Apollo Router to improperly bypass access controls o