express-ipfilter icon indicating copy to clipboard operation
express-ipfilter copied to clipboard

Published 20 hours ago verified publisher icon ryanbillingsley

Dependency on lodash 3, which suffers from security vulnerabilities

Open laurieboyes opened this issue 6 years ago • 1 comments

Vulnerability report: https://snyk.io/vuln/npm:lodash:20180130

Maybe lodash could be swapped out for some modern JS features? Not sure how this lib is handling potentially breaking changes however.

laurieboyes avatar May 09 '18 08:05 laurieboyes

Only you need to update lodash packet to 4.17.5 version

GuillermoPena avatar Oct 31 '18 16:10 GuillermoPena