material-table icon indicating copy to clipboard operation
material-table copied to clipboard
verified publisher icon mbrn

Vulnerable issue with JsPdf v2.1.0

Open nmanthena18 opened this issue 3 years ago • 3 comments

Guidelines

  • Having vulnerable issue with severity is high

Describe the bug Material table internally using the jsPDF v2.1.0 package which having vulnerable issue, this was fixed in jsPDF v2.5.1. but Material table still using the old version of jsPDF, probably need to upgrade the version, but not sure about the impact for the upgrade.

To Reproduce Steps to reproduce the behavior:

  1. npm init
  2. npm i material-table
  3. npm audit --json
  4. Scroll down to the report
  5. See error **{ "findings": [ { "version": "2.1.0", "paths": [ "material-table>jspdf" ] } ], "metadata": null, "vulnerable_versions": "<2.3.1", "module_name": "jspdf", "severity": "high", **

Expected behavior No vulnerable issues should be there

Additional context Add any other context about the problem here.

nmanthena18 avatar Feb 01 '22 06:02 nmanthena18

Seeing this issue for our project as well.

ghost avatar Feb 10 '22 21:02 ghost

same here

pravinvarma avatar May 10 '22 12:05 pravinvarma

This issue has been automatically marked as stale because it has not had recent activity. It will be closed if no further activity occurs. Thank you for your contributions. You can reopen it if it required.

stale[bot] avatar Aug 11 '22 23:08 stale[bot]

any update on this?

rullymartanto avatar Dec 05 '23 07:12 rullymartanto