stmux icon indicating copy to clipboard operation
stmux copied to clipboard
verified publisher icon rse

Security vulnerability

Open goncedillo opened this issue 6 years ago • 1 comments

Hi there,

first of all I want to thank you for your impressive work. It is really great to have a tool like this for the community. So tanks in advance :wink:

I have a CLI tool called mockium that uses your package for offereing multiple and connected panels in the terminal.

Recently I noticed that my package process was warned because a security issue related to Lodash in one of your dependencies. So I decided to give you a hand with it and update the version in order to fix the vulnerability.
I opened a PR for that. I hope this small contribution helps you with your fantastic package.

Again. Thanks for your work

goncedillo avatar Aug 08 '19 14:08 goncedillo

The lodash vulnerability is now fixed through an upgrade of pegjs-otf, but the xterm.js related one cannot be fixed.

rse avatar Nov 06 '21 09:11 rse