iot-nodejs icon indicating copy to clipboard operation
iot-nodejs copied to clipboard

Published 20 hours ago verified publisher icon ibm-watson-iot

Vulnerability reported in @wiotp/sdk because of axios

Open davydnorris opened this issue 4 years ago • 3 comments

Current release needs axios to be revved due to a high priority security issue in axios 0.19, which is fixed in axios > 0.21

davydnorris avatar Feb 11 '21 03:02 davydnorris

any updates on this one @JonahLuckett ? We need it for a fixpack over the next 2 weeks

scottdickerson avatar Nov 05 '21 15:11 scottdickerson

Hey Scott - sorry for the delay - will try and have a fix pushed tomorrow for you

JonahLuckett avatar Nov 15 '21 11:11 JonahLuckett

any more updates? @JonahLuckett

scottdickerson avatar Dec 15 '21 20:12 scottdickerson

we need to update the axios to 1.6.0. do we have any ETA on this issue ?

herleraja avatar Nov 22 '23 08:11 herleraja