pkg:npm/@dicebear/converter
2 total CVEsHIGH2
✅ Check your installed version
All known vulnerabilities
HIGH7.5CVE-2026-33418SVG Dimension Capping Bypass via XML Comment Injection in @dicebear/converter ensureSize() from 0, < 9.4.2
HIGH7.5CVE-2026-29112Uncontrolled memory allocation via crafted SVG dimensions in @dicebear/converter from 0, < 9.4.0