supertest icon indicating copy to clipboard operation
supertest copied to clipboard

Published 20 hours ago • verified publisher icon ladjs

I didnt find supertest latest version updated with latest superagent 8.0.9

Open suj123j opened this issue 2 years ago • 2 comments

Hi Team, Today for superagent the latest version is 8.0.9 with no vulnerabilities.the supertest version with 6.3.3 is not updated with these dependency superagent 8.0.9. Can you help me here ?? supertest

suj123j avatar May 11 '23 14:05 suj123j

Hello. [email protected] has as dep [email protected], containing a CVE. The last version of [email protected] has fixed this security issue.

Is this possible to upgrade superagent ?

Thanks, Massi

massipasquesi avatar Sep 07 '23 09:09 massipasquesi

Fix would help us as this is being picked up by pipeline scans for us causing issues. Does overriding the vulnerable version sound like a good idea for the time being ? https://docs.npmjs.com/cli/v9/configuring-npm/package-json#overrides

Thanks, Sumanta

qeateam avatar Sep 15 '23 05:09 qeateam

v7.0.0 released to npm

https://github.com/ladjs/supertest/releases/tag/v7.0.0

titanism avatar Apr 24 '24 15:04 titanism