Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

fixed dependencies` vulnerabilities #12

Merged
merged 1 commit into from
Jun 29, 2022
Merged

fixed dependencies` vulnerabilities #12

merged 1 commit into from
Jun 29, 2022

Conversation

whitershade
Copy link
Contributor

fixed 3 vulnerabilities (2 high, 1 critical) by npm audit fix

npm audit report

follow-redirects  <=1.14.7
Severity: high
Exposure of Sensitive Information to an Unauthorized Actor in follow-redirects - https://github.com/advisories/GHSA-pw2r-vq6v-hr8c
Exposure of sensitive information in follow-redirects - https://github.com/advisories/GHSA-74fj-2j2h-c42q
fix available via `npm audit fix`
node_modules/follow-redirects

minimist  <1.2.6
Severity: critical
Prototype Pollution in minimist - https://github.com/advisories/GHSA-xvch-5gv4-984h
fix available via `npm audit fix`
node_modules/minimist

node-fetch  <2.6.7
Severity: high
node-fetch is vulnerable to Exposure of Sensitive Information to an Unauthorized Actor - https://github.com/advisories/GHSA-r683-j2x4-v87g
fix available via `npm audit fix`
node_modules/node-fetch

@whitershade whitershade self-assigned this Jun 23, 2022
@whitershade whitershade requested a review from Eight1911 June 23, 2022 10:54
@whitershade whitershade merged commit 530667b into Asana:main Jun 29, 2022
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Reviewers

@paslavsky paslavsky paslavsky approved these changes

@Eight1911 Eight1911 Awaiting requested review from Eight1911

Assignees

@whitershade whitershade

Labels
None yet
Milestone
No milestone
Development

Successfully merging this pull request may close these issues.
2 participants
@whitershade @paslavsky