eslint-plugin-graphql icon indicating copy to clipboard operation
eslint-plugin-graphql copied to clipboard

Published 20 hours ago verified publisher icon apollographql

Security vulnerabilities

Open netusco opened this issue 2 years ago • 1 comments
trafficstars

Hello,

There is two high risk security vulnerabilities related to node-fetch package and minimatch that this plugin depends on. Could you update the versions of those dependencies to their patched version? I'm happy to create a fix PR if you accept it. Thanks.

netusco avatar Jul 26 '23 13:07 netusco

Fixed in https://github.com/apollographql/eslint-plugin-graphql/pull/342

znarf avatar Dec 04 '23 19:12 znarf