Security Issue with dependent package undici #10140
Labels
Comments
|
There's nothing that Discord.js can do at the moment, other than you dismissing the alert. |
Sign up for free
to join this conversation on GitHub.
Already have an account?
Sign in to comment
Which package is this bug report for?
discord.js
Issue description
I cannot upgrade to 14.14.1 because of an upstream dependency of the latest version adding security vulnerability.
For more info see Github's Dependabot's PR to my repo bumping discord.js to latest. This is the only change in this repo which means this dependency is coming from discord.js somewhere between my current version 14.7.1 and 14.14.1
techy2493/ts-disc-control#35
Code sample
No response
Versions
discord.js 14.14.1
Issue priority
Medium (should be fixed soon)
Which partials do you have configured?
Not applicable
Which gateway intents are you subscribing to?
Not applicable
I have tested this issue on a development release
No response
The text was updated successfully, but these errors were encountered: