Turborepo is a high-performance build system for JavaScript and TypeScript codebases.
97%
Total Score
100
100
91
100
100
| Title | Versions | Severity |
|---|---|---|
AIKIDO-2026-427079 Pre-CVE Found by Aikido Intel before public disclosure or CVE publication. turbo is vulnerable to Path Traversal in versions 1.0.0 - 2.9.17. | 1.0.0 - 2.9.17 | Low |
AIKIDO-2026-10952 Pre-CVE Found by Aikido Intel before public disclosure or CVE publication. turbo is vulnerable to Race Condition (TOCTOU) in versions 0.0.1 - 2.9.14. | 0.0.1 - 2.9.14 | Medium |
CVE-2026-45773 turbo is vulnerable to Cross-Site Request Forgery (CSRF) in versions 0.0.0 - 2.9.13. | 0.0.0 - 2.9.13 | Medium |
CVE-2026-45772 turbo is vulnerable to Untrusted Search Path in versions 1.1.0 - 2.9.14. | 1.1.0 - 2.9.14 | Critical |
No direct dependencies.
Connect your repositories to instantly see whether vulnerable or malicious packages exist in your codebase.
Free. No credit card required.

SOC 2Compliant
ISO 27001Compliant