asyncapi
[Security] ws package vulnerability through puppeteer@14
Description "[email protected]" package has known vulnerabilities and is present in dependency tree through puppeter:^14.1.0
Details The ws package, has known vulnerabilities, is being included as a transitive dependency: https://github.com/advisories/GHSA-3h5v-q93c-6h6q Below is the detailed dependency chain:
[email protected]
├── puppeteer@ ^14.1.0
└── ws: 8.6.0
Welcome to AsyncAPI. Thanks a lot for reporting your first issue. Please check out our contributors guide and the instructions about a basic recommended setup useful for opening a pull request.
Keep in mind there are also other channels you can use to interact with AsyncAPI community. For more details check out this issue.
![github-actions[bot] avatar](https://avatars.githubusercontent.com/in/15368?v=4 "Published by a pub.dev verified publisher"){kind=small}
This issue has been automatically marked as stale because it has not had recent activity :sleeping:
It will be closed in 120 days if no further activity occurs. To unstale this issue, add a comment with a detailed explanation.
There can be many reasons why some specific issue has no activity. The most probable cause is lack of time, not lack of interest. AsyncAPI Initiative is a Linux Foundation project not owned by a single for-profit company. It is a community-driven initiative ruled under open governance model.
Let us figure out together how to push this issue forward. Connect with us through one of many communication channels we established here.
Thank you for your patience :heart: