cordova-custom-config icon indicating copy to clipboard operation
cordova-custom-config copied to clipboard

Published 20 hours ago verified publisher icon dpa99c

Updating package.json to fix vulnerabilites

Open Sujay-shetty opened this issue 2 years ago • 2 comments

There are vulnerabilities reported in xcode and shelljs, updating them to fix it.

PR Type

What kind of change does this PR introduce?

  • [ ] Bugfix
  • [ ] Feature
  • [ ] Code style update (formatting, local variables)
  • [ ] Refactoring (no functional changes, no api changes)
  • [ ] Documentation changes
  • [x] Other... Please describe: Vulnerability fix in dependent packages (xcode and shell.js)

PR Checklist

For bug fixes / features, please check if your PR fulfills the following requirements:

  • [x] Testing has been carried out for the changes have been added
  • [ ] Regression testing has been carried out for existing functionality
  • [ ] Docs have been added / updated

What is the purpose of this PR?

https://nvd.nist.gov/vuln/detail/CVE-2022-0144 https://snyk.io/test/npm/xcode/1.0.0

Does this PR introduce a breaking change?

  • [ ] Yes
  • [x] No

What testing has been done on the changes in the PR?

What testing has been done on existing functionality?

Other information

Sujay-shetty avatar Feb 08 '22 14:02 Sujay-shetty

@dpa99c please look into this PR as it fixes some vulnerabilities in two packages which are high @pke , @superserg8 could you please look into this PR and merge if everything is ok. @dpa99c /@pke could you please merge this PR

Sujay-shetty avatar Feb 08 '22 14:02 Sujay-shetty

Could this PR be merged and released please?

studioromeo avatar Mar 03 '22 12:03 studioromeo