Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

chore[stable27] - audit dependencies #1603

Merged
merged 1 commit into from
Jul 10, 2023

Conversation

Antreesy
Copy link
Collaborator

@Antreesy Antreesy commented Jul 7, 2023

Non-fixable dependencies at the moment:

semver  <7.5.2
Severity: moderate
semver vulnerable to Regular Expression Denial of Service - https://github.com/advisories/GHSA-c2qf-rxjj-qqgw
No fix available

13 moderate severity vulnerabilities

Signed-off-by: Maksim Sukharev <[email protected]>
@Antreesy Antreesy added security dependencies Pull requests that update a dependency file javascript labels Jul 7, 2023
@Antreesy Antreesy added this to the Nextcloud 27.0.1 milestone Jul 7, 2023
@Antreesy Antreesy requested a review from nickvergessen as a code owner July 7, 2023 12:09
@Antreesy Antreesy self-assigned this Jul 7, 2023
@nickvergessen nickvergessen merged commit d0931d5 into stable27 Jul 10, 2023
@nickvergessen nickvergessen deleted the chore/stable27/audit-dependencies branch July 10, 2023 08:48
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Labels
dependencies Pull requests that update a dependency file javascript security
Projects
None yet
Development

Successfully merging this pull request may close these issues.

2 participants