odd-app-template icon indicating copy to clipboard operation
odd-app-template copied to clipboard

Published 20 hours ago verified publisher icon oddsdk

updated dependencies

Open jeffgca opened this issue 2 years ago • 1 comments
trafficstars

Noticed the template had some security changes in the queue:

# npm audit report

@sveltejs/kit  <=1.15.1
Severity: high
SvelteKit vulnerable to Cross-Site Request Forgery - https://github.com/advisories/GHSA-5p75-vc5g-8rv2
SvelteKit framework has Insufficient CSRF protection for CORS requests - https://github.com/advisories/GHSA-gv7g-x59x-wf8f
Depends on vulnerable versions of undici
fix available via `npm audit fix`
node_modules/@sveltejs/kit

undici  <=5.19.0
Severity: high
Regular Expression Denial of Service in Headers - https://github.com/advisories/GHSA-r6ch-mqf9-qc9w
CRLF Injection in Nodejs ‘undici’ via host - https://github.com/advisories/GHSA-5r9g-qh6m-jxff
fix available via `npm audit fix`
node_modules/undici

jeffgca avatar Jun 01 '23 22:06 jeffgca

The latest updates on your projects. Learn more about Vercel for Git ↗︎

Name Status Preview Updated (UTC)
odd-app-template ✅ Ready (Inspect) Visit Preview Jun 1, 2023 10:37pm

vercel[bot] avatar Jun 01 '23 22:06 vercel[bot]