github-build icon indicating copy to clipboard operation
github-build copied to clipboard

Published 20 hours ago verified publisher icon siddharthkp

axios security alert

Open mfulton26 opened this issue 1 year ago • 0 comments

Security Alert: Server-Side Request Forgery in axios · CVE-2024-39338 · GitHub Advisory Database

https://github.com/siddharthkp/github-build/blob/723b1cce3feff4bdded018c5dd604a0e02b9c420/package.json#L23

I suggest bumping the version but, perhaps more importantly, placing a ^ on the version so that future fixes can be handled by consumers without needing an explicit github-build version release.

mfulton26 avatar Oct 04 '24 19:10 mfulton26