Merge pull request #6872 from zapbot/retirejs-update

thc202 · web-flow · commit 7fae18b9a87e · 2025-11-02T14:22:39.000Z
retire.js Update 2025-11-02
diff --git a/addOns/retire/src/main/resources/org/zaproxy/addon/retire/resources/jsrepository.json b/addOns/retire/src/main/resources/org/zaproxy/addon/retire/resources/jsrepository.json
@@ -3378,6 +3378,25 @@
           "https://www.herodevs.com/vulnerability-directory/cve-2024-8372"
         ]
       },
+      {
+        "atOrAbove": "1.7.0",
+        "below": "1.8.8",
+        "severity": "medium",
+        "cwe": [
+          "CWE-1333",
+          "CWE-770"
+        ],
+        "identifiers": {
+          "summary": "angular vulnerable to regular expression denial of service (ReDoS)",
+          "CVE": [
+            "CVE-2022-25844"
+          ],
+          "githubID": "GHSA-m2h2-264f-f486"
+        },
+        "info": [
+          "https://github.com/advisories/GHSA-m2h2-264f-f486"
+        ]
+      },
       {
         "atOrAbove": "0",
         "below": "1.9.8",
@@ -3435,25 +3454,6 @@
         "info": [
           "https://docs.angularjs.org/misc/version-support-status"
         ]
-      },
-      {
-        "atOrAbove": "1.7.0",
-        "below": "999",
-        "severity": "medium",
-        "cwe": [
-          "CWE-1333",
-          "CWE-770"
-        ],
-        "identifiers": {
-          "summary": "angular vulnerable to regular expression denial of service (ReDoS)",
-          "CVE": [
-            "CVE-2022-25844"
-          ],
-          "githubID": "GHSA-m2h2-264f-f486"
-        },
-        "info": [
-          "https://github.com/advisories/GHSA-m2h2-264f-f486"
-        ]
       }
     ],
     "extractors": {
@@ -8380,7 +8380,7 @@
         ]
       },
       {
-        "atOrAbove": "0",
+        "atOrAbove": "0.7.30",
         "below": "0.7.33",
         "cwe": [
           "CWE-1333",
