LibreChat icon indicating copy to clipboard operation
LibreChat copied to clipboard
Published 3 months ago verified publisher icon danny-avila

Enhancement: Outdated Packages with Vulnerabilities

Open hanna-daoud opened this issue 1 year ago • 0 comments

API Dependencies

  1. axios: ^1.3.4

    • Newer Version: 1.7.7
    • Security Advisory:
      • Severity: MODERATE (6.5)
      • Action: Please upgrade to version 1.7.4 or higher.

  2. express: ^4.18.2

    • Newer Version: 4.21.0
    • Security Advisory:
      • Severity: MODERATE (5.0)
      • Action: Please upgrade to version 4.20.0 or higher.

  3. mongoose: ^7.1.1

    • Newer Version: 7.8.1
    • Security Advisory:
      • Severity: CRITICAL (10.0)
      • Action: Please upgrade to version 7.3.3 or higher.

  4. nodemailer: ^6.9.4

    • Newer Version: 6.9.15
    • Security Advisory:
      • Severity: MODERATE (5.3)
      • Action: Please upgrade to version 6.9.9 or higher.

  5. ws: ^8.17.0

    • Newer Version: 8.18.0
    • Security Advisory:
      • Severity: HIGH (7.5)
      • Action: Please upgrade to version 8.17.1 or higher.

Client Dependencies

  1. axios: ^1.3.4

    • Newer Version: 1.7.7
    • Security Advisory:
      • Severity: MODERATE (6.5)
      • Action: Please upgrade to version 1.7.4 or higher.

  2. vite: ^5.1.1

    • Newer Version: 5.4.6
    • Security Advisory:
      • Severity: MODERATE (6.4)
      • Action: Please upgrade to version 5.2.14 or higher.

hanna-daoud avatar Sep 19 '24 04:09 hanna-daoud