89%
Total Score
100
25
100
100
100
| Title | Versions | Severity |
|---|---|---|
CVE-2026-54074 @tinacms/cli is vulnerable to Improper Control of Generation of Code ('Code Injection') in versions 0.0.0 - 2.4.3. | 0.0.0 - 2.4.3 | High |
CVE-2026-29066 @tinacms/cli is vulnerable to Exposure of Sensitive Information to an Unauthorized Actor in versions 0.0.0 - 2.1.8. | 0.0.0 - 2.1.8 | Medium |
CVE-2026-28793 @tinacms/cli is vulnerable to Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal') in versions 0.0.0 - 2.1.8. | 0.0.0 - 2.1.8 | High |
CVE-2026-28792 @tinacms/cli is vulnerable to Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal') in versions 0.0.0 - 2.1.8. | 0.0.0 - 2.1.8 | Critical |
AIKIDO-2026-10282 @tinacms/cli is vulnerable to Path Traversal in versions 1.0.0 - 2.1.6. | 1.0.0 - 2.1.6 | High |
| Dependency | Last Release | Score |
|---|---|---|
yup Version ^1.6.1 | — | — |
zod Version ^3.24.2 | — | — |
cors Version ^2.8.5 | — | — |
vite Version ^4.5.9 | — | — |
chalk Version ^5.4.1 | — | — |
Connect your repositories to instantly see whether vulnerable or malicious packages exist in your codebase.
Free. No credit card required.

SOC 2Compliant
ISO 27001Compliant