material-table
material-table copied to clipboard
Update Vulnerable version of jspdf package
Description
Versions previous to2.3.1
introduce a Regular Expression Denial of Service (ReDoS) Vulnerability.
This PR updates to version 2.3.1
of the library jspdf
in order to mitigate that.
Additional Notes
More info here: https://snyk.io/vuln/SNYK-JS-JSPDF-1073626
@mbrn please approve!
owner approval needed pls thx
any chance of getting this merged soon :) ?
Can this please be approved! Thank you! @mbrn
Any news here?
Hi, can this pull request be merged please
I was wondering if there already exists an issue about this... i only have one security vulnerability left inside my npm packages in a project after auditing all. Would be nice if you would approve it @mbrn :)
Is this going to be approved?? its been almost 4 months
Hi, Any news here, if this is not merged then we will need to make fork of this.
@mbrn ??
This issue has been automatically marked as stale because it has not had recent activity. It will be closed if no further activity occurs. Thank you for your contributions. You can reopen it if it required.
not stale! Please merge :)
This issue has been automatically marked as stale because it has not had recent activity. It will be closed if no further activity occurs. Thank you for your contributions. You can reopen it if it required.
One more time :D not stale, please merge!
Any update on this getting approved? Really killing my npm audits :(
Not Stale. Please approve this very, very, very simple pull request which fixes crucial auditing issues.
Any update?
How has this not been reviewed? If this repo isn't active, can it be marked as such?
https://github.com/mbrn/material-table/issues/3044
This issue has been automatically marked as stale because it has not had recent activity. It will be closed if no further activity occurs. Thank you for your contributions. You can reopen it if it required.
In case someone is interested, I have forked this project and updated the library. I will accept and review any PR if the community decides to continue the development of this project.
Since the maintainer pushed a PR in yesterday "memory leak problem fix", the code is being maintained.
Until he is ready to push the version bump to the dependency (perhaps not merged for a reason he has yet to explain to the crowd) you can simply add jspdf
to "resolutions" in package.json.
This issue has been automatically marked as stale because it has not had recent activity. It will be closed if no further activity occurs. Thank you for your contributions. You can reopen it if it required.