cypress-grep icon indicating copy to clipboard operation
cypress-grep copied to clipboard

Published 20 hours ago verified publisher icon cypress-io

Failing NPM audit

Open JakeHaitsma opened this issue 3 years ago • 0 comments

This package is failing a yarn audit at ^3.0.1. A dependency relies on got <11.8.5. See https://www.npmjs.com/advisories/1080920.

yarn audit v1.22.10
┌───────────────┬──────────────────────────────────────────────────────────────┐
│ moderate      │ Got allows a redirect to a UNIX socket                       │
├───────────────┼──────────────────────────────────────────────────────────────┤
│ Package       │ got                                                          │
├───────────────┼──────────────────────────────────────────────────────────────┤
│ Patched in    │ >=11.8.5                                                     │
├───────────────┼──────────────────────────────────────────────────────────────┤
│ Dependency of │ cypress-grep                                                 │
├───────────────┼──────────────────────────────────────────────────────────────┤
│ Path          │ cypress-grep > find-test-names > simple-bin-help >           │
│               │ update-notifier > latest-version > package-json > got        │
├───────────────┼──────────────────────────────────────────────────────────────┤
│ More info     │ https://www.npmjs.com/advisories/1080920                     │
└───────────────┴──────────────────────────────────────────────────────────────┘
1 vulnerabilities found - Packages audited: 1701
Severity: 1 Moderate
✨  Done in 1.35s.

JakeHaitsma avatar Jul 06 '22 14:07 JakeHaitsma