Skip to content

NPM audit shows moderate vulnerabilities alert #1248

Open
Open
NPM audit shows moderate vulnerabilities alert#1248

Description

@shaozi
shaozi
opened on Oct 6, 2020

On version 0.11.6

npm audit shows the following moderate vulnerabilities alert:

┌───────────────┬──────────────────────────────────────────────────────────────┐
│ Moderate      │ Prototype Pollution                                          │
├───────────────┼──────────────────────────────────────────────────────────────┤
│ Package       │ extend                                                       │
├───────────────┼──────────────────────────────────────────────────────────────┤
│ Patched in    │ >=2.0.2 <3.0.0 || >=3.0.2                                    │
├───────────────┼──────────────────────────────────────────────────────────────┤
│ Dependency of │ kue                                                          │
├───────────────┼──────────────────────────────────────────────────────────────┤
│ Path          │ kue > node-redis-warlock > node-redis-scripty > extend       │
├───────────────┼──────────────────────────────────────────────────────────────┤
│ More info     │ https://npmjs.com/advisories/996                             │
└───────────────┴──────────────────────────────────────────────────────────────┘

Metadata

Metadata

Assignees

No one assigned

    Labels

    No labels
    No labels

    Type

    No type

    Fields

    No fields configured for issues without a type.

    Projects

    No projects

    Milestone

    No milestone

    Relationships

    None yet

    Development

    No branches or pull requests

    Issue actions