-
-
Notifications
You must be signed in to change notification settings - Fork 54
New issue
Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.
By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.
Already on GitHub? Sign in to your account
Update of dependent package "@discordjs/opus" #92
Comments
This issue is further upstream and needs to be fixed first: discordjs/node-pre-gyp#5 |
The current versions of @discordjs/opus are also vulnerable. Once |
Yes, I understand. |
@fredkilbourn any update on this issue? |
I think they fixed it a while ago... |
What exactly is this waiting on? Locally running |
This issue is referencing an issue from last year, not related to the CVE from this month. |
Fixed in v1.3.4 |
Issue:
It uses the dependency package "ansi-regex" (GHSA-93q8-gq69-wqmw),
which is vulnerable due to an outdated version of the dependency package "@discordjs/opus".
The version of the dependent package "@discordjs/opus" needs to be updated.
Further details:
The text was updated successfully, but these errors were encountered: