VYPR

npm package

@aws-amplify/cli

pkg:npm/%40aws-amplify/cli

Vulnerabilities (1)

  • CVE-2024-28056Apr 15, 2024
    affected < 12.10.1fixed 12.10.1

    Amazon AWS Amplify CLI before 12.10.1 incorrectly configures the role trust policy of IAM roles associated with Amplify projects. When the Authentication component is removed from an Amplify project, a Condition property is removed but "Effect":"Allow" remains present, and conseq