Spectra Assure
Community
Docs
failRisk: Vulnerabilities
Scanned: 2 days ago

NGINX Configuration Language Support

Artifact:
latest
Top 1k
Nginx configuration helper for Visual Studio Code with many features including syntax highlight, auto-complete, in-editor documents, embedded Lua block, and more
License: Copyleft (GPL-3.0)
Published: over 1 year ago
Publisher: ahmadalli
Visit Github
See on Visual Studio Code

SAFE Assessment

Compliance

Licenses
1 copyleft licensed components
Secrets
No sensitive information found

Security

Vulnerabilities
2 severe vulnerabilities exploited
Hardening
No application hardening issues

Threats

Tampering
No evidence of software tampering
Malware
No evidence of malware inclusion
List of known vulnerabilities affecting the software package and the components it embeds. Last refreshed on: 2025/12/03
All detected vulnerabilities are fixable
Run the update/upgrade command in your package manager to resolve the detected vulnerabilities
CVSS Score
CVE
Name
Tags
high
8.7
CVE-2025-48387
Fix Available
high
8.7
CVE-2025-59343
Fix Available
high
7.5
CVE-2024-12905
Exploits Exist
Fix Available
high
7.5
CVE-2024-4068
Exploits Exist
Fix Available
medium
6.6
CVE-2024-21538
Exploits Exist
Fix Available
medium
5.3
CVE-2023-0842
Exploits Exist
Fix Available
medium
5.3
CVE-2024-4067
Exploits Exist
Fix Available
medium
5.3
CVE-2025-54798
Exploits Exist
Fix Available
low
2.3
CVE-2025-5889
Exploits Exist
Fix Available

Did you know...

... that you can use ReversingLabs’ Spectra Assure platform to perform regular risk assessments of packages you develop in-house?

We recommend continuous software safeness monitoring through CI/CD integrations and pre-release/deployment checks. In addition to basic package information found on this page our platform offers rich reports for developers and DevSecOps that help them remediate all reported issues.