claudia icon indicating copy to clipboard operation
claudia copied to clipboard

Published 20 hours ago verified publisher icon claudiajs

critical dependency update: async and minimist

Open HayesData opened this issue 2 years ago • 2 comments

updated async and minimist dependencies, previous versions had serious vulnerabilities

HayesData avatar May 17 '22 07:05 HayesData

Voting +1 to merge this PR.

minimist  <1.2.6
Severity: critical
Prototype Pollution in minimist - https://github.com/advisories/GHSA-xvch-5gv4-984h
fix available via `npm audit fix`
node_modules/claudia/node_modules/minimist

itspoma avatar May 24 '22 23:05 itspoma

Hey @gojko could you please take a look at this PR? It helps to solve 1 critical vuln on dependencies. Cheers.

itspoma avatar May 26 '22 19:05 itspoma