Root has patched CVE-2026-54288 in the @rootio/hono package for Root:npm. Multiple fixed versions available.
{ "distro": "npm", "severity": "MEDIUM", "source": "Root", "distro_version": "" }
""
2.0
true
[ "4.12.14-root.io.7", "4.12.14-root.io.8" ]
"4.12.14-root.io.8"
"https://api.root.io/external/osv/ROOT-APP-NPM-CVE-2026-54288.json"
"4.12.14-aikido.8"
[ "4.12.14-aikido.7", "4.12.14-aikido.8" ]