orientjs icon indicating copy to clipboard operation
orientjs copied to clipboard
verified publisher icon orientechnologies

GitHub reports hoek dependency as a security issue

Open riker09 opened this issue 7 years ago • 1 comments

Please consider updating your dependency on the request package. This package uses hawk which in turn uses hoek in a certain version which has a security issue (at least in the eyes of GitHub, which is a bug, see here).

riker09 avatar Jul 24 '18 07:07 riker09

Okay, the real culprit seems to be the package istanbul-coveralls. Any timeline on when this will get fixed for the 2.2.x branch?

riker09 avatar Sep 28 '18 08:09 riker09