openapi-backend icon indicating copy to clipboard operation
openapi-backend copied to clipboard

Published 20 hours ago verified publisher icon openapistack

npm audit fail on last version (5.11.0) due to cookie(0.5.0) vulnerability

Open jpikerun opened this issue 1 year ago • 0 comments

The following audit report is generated with the latest openapi-backend version.

# npm audit report

cookie  <0.7.0
cookie accepts cookie name, path, and domain with out of bounds characters - https://github.com/advisories/GHSA-pxg6-pf52-xh8x

node_modules/cookie
  openapi-backend  >=1.3.6
  Depends on vulnerable versions of cookie
  node_modules/openapi-backend

jpikerun avatar Oct 09 '24 15:10 jpikerun