{"id":1778531,"name":"gitlogplus","ecosystem":"npm","description":"Git log parser for Node.JS","homepage":null,"licenses":"BSD","normalized_licenses":["BSD-3-Clause"],"repository_url":"","keywords_array":["git","log","parser"],"namespace":null,"versions_count":5,"first_release_published_at":"2019-03-11T19:27:12.901Z","latest_release_published_at":"2019-03-19T19:10:28.906Z","latest_release_number":"3.1.7","last_synced_at":"2026-04-18T18:12:17.567Z","created_at":"2022-04-09T16:27:10.852Z","updated_at":"2026-04-18T18:12:17.567Z","registry_url":"https://www.npmjs.com/package/gitlogplus","install_command":"npm install gitlogplus","documentation_url":null,"metadata":{"funding":null,"dist-tags":{"latest":"3.1.7"}},"repo_metadata":null,"repo_metadata_updated_at":null,"dependent_packages_count":4,"downloads":377,"downloads_period":"last-month","dependent_repos_count":13,"rankings":{"downloads":12.956758138346075,"dependent_repos_count":3.4497850709319655,"dependent_packages_count":4.472098686258928,"stargazers_count":null,"forks_count":null,"docker_downloads_count":null,"average":6.959547298512323},"purl":"pkg:npm/gitlogplus","advisories":[{"uuid":"MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLTNmeHAtdnd4bS0ycjVw","url":"https://github.com/advisories/GHSA-3fxp-vwxm-2r5p","title":"Command injection in gitlogplus","description":"All versions of package gitlogplus are vulnerable to Command Injection via the main functionality, as options attributes are appended to the command to be executed without sanitization.","origin":"UNSPECIFIED","severity":"CRITICAL","published_at":"2021-07-26T21:23:35.000Z","withdrawn_at":null,"classification":"GENERAL","cvss_score":9.8,"cvss_vector":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H","references":["https://nvd.nist.gov/vuln/detail/CVE-2021-23412","https://hackerone.com/reports/808942","https://snyk.io/vuln/SNYK-JS-GITLOGPLUS-1315832","https://www.npmjs.com/package/gitlogplus","https://github.com/advisories/GHSA-3fxp-vwxm-2r5p"],"source_kind":"github","identifiers":["GHSA-3fxp-vwxm-2r5p","CVE-2021-23412"],"repository_url":null,"blast_radius":0.0,"created_at":"2022-12-21T16:12:57.506Z","updated_at":"2026-04-15T17:10:11.233Z","epss_percentage":0.04402,"epss_percentile":0.88791,"api_url":"https://advisories.ecosyste.ms/api/v1/advisories/MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLTNmeHAtdnd4bS0ycjVw","html_url":"https://advisories.ecosyste.ms/advisories/MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLTNmeHAtdnd4bS0ycjVw","packages":[{"ecosystem":"npm","package_name":"gitlogplus","versions":[{"first_patched_version":null,"vulnerable_version_range":"\u003c= 3.1.7"}],"purl":"pkg:npm/gitlogplus"}],"related_packages_url":"https://advisories.ecosyste.ms/api/v1/advisories/MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLTNmeHAtdnd4bS0ycjVw/related_packages","related_advisories":[]}],"docker_usage_url":"https://docker.ecosyste.ms/usage/npm/gitlogplus","docker_dependents_count":null,"docker_downloads_count":null,"usage_url":"https://repos.ecosyste.ms/usage/npm/gitlogplus","dependent_repositories_url":"https://repos.ecosyste.ms/api/v1/usage/npm/gitlogplus/dependencies","status":null,"funding_links":[],"critical":null,"issue_metadata":null,"versions_url":"https://packages.ecosyste.ms/api/v1/registries/npmjs.org/packages/gitlogplus/versions","version_numbers_url":"https://packages.ecosyste.ms/api/v1/registries/npmjs.org/packages/gitlogplus/version_numbers","dependent_packages_url":"https://packages.ecosyste.ms/api/v1/registries/npmjs.org/packages/gitlogplus/dependent_packages","related_packages_url":"https://packages.ecosyste.ms/api/v1/registries/npmjs.org/packages/gitlogplus/related_packages","codemeta_url":"https://packages.ecosyste.ms/api/v1/registries/npmjs.org/packages/gitlogplus/codemeta","maintainers":[{"uuid":"jonathandown","login":"jonathandown","name":null,"email":"jonathan@proposify.com","url":null,"packages_count":2,"html_url":"https://www.npmjs.com/~jonathandown","role":null,"created_at":"2022-11-12T13:27:46.856Z","updated_at":"2022-11-12T13:27:46.856Z","packages_url":"https://packages.ecosyste.ms/api/v1/registries/npmjs.org/maintainers/jonathandown/packages"}]}