swagger-node icon indicating copy to clipboard operation
swagger-node copied to clipboard

Published 20 hours ago verified publisher icon swagger-api

lodash version causing node vulnerability audit

Open joeyjmorales opened this issue 6 years ago • 1 comments

Please see PR: https://github.com/swagger-api/swagger-node/pull/579

Thanks!

joeyjmorales avatar Jan 08 '19 22:01 joeyjmorales

We'd like this as well, but I notice that since the package.json file has ^4.17.2 it should already be picking up the latest version of 4.17.*

I'm more worried about package.json still containing a version number of 0.7.5. There have been several updates to package.json in the last 4 years, but never a new release or a new publish to npm, so none of the changes are actually getting through to a released version.

Looking at https://github.com/swagger-api/swagger-node/issues/570 it looks like this repo might spring back into life again soon though.

andyedwardsibm avatar Apr 09 '19 13:04 andyedwardsibm