VYPR

npm package

@studiocms/s3-storage

pkg:npm/%40studiocms/s3-storage

Vulnerabilities (1)

  • CVE-2026-32101Mar 11, 2026
    affected < 0.3.1fixed 0.3.1

    StudioCMS is a server-side-rendered, Astro native, headless content management system. Prior to 0.3.1, the S3 storage manager's isAuthorized() function is declared async (returns Promise) but is called without await in both the POST and PUT handlers. Since a Promise obje