VYPR

npm package

docusaurus-plugin-content-gists

pkg:npm/docusaurus-plugin-content-gists

Vulnerabilities (1)

  • CVE-2025-53624CriJul 9, 2025
    affected < 4.0.0fixed 4.0.0

    The Docusaurus gists plugin adds a page to your Docusaurus instance, displaying all public gists of a GitHub user. docusaurus-plugin-content-gists versions prior to 4.0.0 are vulnerable to exposing GitHub Personal Access Tokens in production build artifacts when passed through pl