Skip to content
This repository has been archived by the owner on Dec 8, 2022. It is now read-only.

Vulnerability in y18n #342

Open
justineshaw opened this issue Jan 12, 2021 · 0 comments
Open

Vulnerability in y18n #342

justineshaw opened this issue Jan 12, 2021 · 0 comments
Labels
From: Consumer Impact: Medium Severity: Medium Type: Bug

Comments

@justineshaw
Copy link

justineshaw commented Jan 12, 2021
edited

Whitesource found a potential vulnerability in y18n (link) that needs to be upgraded to version 5.0.5.

Running npm ls y18n and I get the following areas where y18n@4.0.1 needs to be upgraded to version 5.0.5, namely these 5 packages: karma, protractor, webpack, webpack-cli and webpack-dev-server

+-- @skyux-sdk/builder@4.7.1
| +-- karma@5.2.3
| | -- yargs@15.4.1
| | -- y18n@4.0.1
| +-- protractor@7.0.0
| | -- yargs@15.4.1
| | -- y18n@4.0.1
| +-- webpack@4.44.2
| | -- terser-webpack-plugin@1.4.5
| | -- cacache@12.0.4
| | -- y18n@4.0.1
| +-- webpack-cli@3.3.12
| | -- yargs@13.3.2
| | -- y18n@4.0.1
| -- webpack-dev-server@3.11.0
| -- yargs@13.3.2
| -- y18n@4.0.1
Sign up for free to subscribe to this conversation on GitHub. Already have an account? Sign in.
Assignees
No one assigned
Labels
From: Consumer Impact: Medium Severity: Medium Type: Bug
Projects
None yet
Milestone
No milestone
Development

No branches or pull requests
2 participants
@Blackbaud-DanMiller @justineshaw