This repository has been archived by the owner on Sep 7, 2022. It is now read-only.
Dependency vulnerability #207
Comments
|
@dignifiedquire JFYI I found some more vulnerabilities using the command |
Sign up for free
to subscribe to this conversation on GitHub.
Already have an account?
Sign in.
FYI you are using phantomjs-prebuilt which is using extract-zip@1.6.5 and extract-zip has a dependency debug@2.2.0 which is vulnerable. The latter is vulnerable itself and is also using a dependency ( ms@0.7.1 ) which has the same vulnerability.
Both vulnerable dependencies have fixed their issues but extract-zip latest version, 1.6.5 is still using the vulnerable versions.
More info: https://snyk.io/test/npm/karma-phantomjs-launcher
The text was updated successfully, but these errors were encountered: