Public

android端基于FFmpeg实现音频剪切、拼接、转码、混音、编解码；视频剪切、水印、截图、转码、编解码、转Gif动图、画面拼接、视频倒播；音视频合成与分离；音视频解码、同步与播放；FFmpeg本地推流、H264与RTMP实时推流直播；OpenGL实时滤镜；FFmpeg滤镜：素描、色彩平衡、hue、lut、模糊、九宫格等；基于IjkPlayer修改支持RTSP超低延时直播(局域网1080P延时130ms)、暂停、静音，多路投屏直播

Security

Vulnerabilities

1 High

2 Medium

3 Low

high

CVE-2021-23337

Prototype pollution vulnerability in lodash before 4.17.21 allows attackers to modify object properties via the set, setWith, and update functions.

lodash 4.17.15 → 4.17.21

medium

CVE-2022-24999

The express package before 4.17.3 for Node.js has a Regular Expression Denial of Service vulnerability via the req.fresh property.

express 4.17.1 → 4.17.3

Security Policies

Security policy

Enabled

Dependabot alerts

Enabled

Code scanning

Disabled

Secret scanning

Enabled

Security Score

78Grade B

Dependency Analysis

lodash4.17.15

1 issues

65/100

express4.17.1

1 issues

72/100

Security Recommendations

Based on the repository's security profile, here are some recommendations:

Update lodash to version 4.17.21 to fix a high severity vulnerability
Update express to version 4.17.3 to fix a medium severity vulnerability
Enable code scanning to detect security vulnerabilities in your code