Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Potential security vulnerability in hapijs / hoek #1480

Closed
jtalati opened this issue May 3, 2018 · 5 comments
Closed

Potential security vulnerability in hapijs / hoek #1480

jtalati opened this issue May 3, 2018 · 5 comments

Comments

@jtalati
Copy link

@jtalati jtalati commented May 3, 2018

We are receiving the following vulnerability message:

image

Our mkdocs version is the latest(Version 0.17.3)

if anyone can guide us or have been through this issue before it would be good help.

This would be a good way for future users who face this issue to interact and find a possible solution for any security vulnerabilities.

@waylan
Copy link
Member

@waylan waylan commented May 3, 2018

I'm not aware that MkDocs makes use of or includes hapijs/hoek.

Are you using any custom JavaScript in your project? Which theme are you using? Where is this being reported from (which browser, tool, etc)?

@waylan
Copy link
Member

@waylan waylan commented May 4, 2018

I asked three questions, but you only answered the first. I need more information to act on this. Is your custom JavaScript making use of the offending library? Are you using a third party theme which is using the offending library? If so, then the matter is out of my hands. But until I can reproduce the problem, I have no way of knowing.

@chriswhong
Copy link

@chriswhong chriswhong commented May 4, 2018

Thanks for the response (I work with @jtalati), we will take a look and see what is actually using hoek. We assumed it came with mkdocs but we'll dig deeper based on your response.

@waylan
Copy link
Member

@waylan waylan commented May 4, 2018

What tool is reporting the problem? If I knew that, at the very least I could check if the tool reports the same issue in a default MkDocs build with the included themes.

@waylan
Copy link
Member

@waylan waylan commented Jun 20, 2018

Closing this due to a lack of useful information. I'm assuming this is related to a third party theme as neither of the included themes make use of the named library.

@waylan waylan closed this Jun 20, 2018
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Labels
None yet
Projects
None yet
Linked pull requests

Successfully merging a pull request may close this issue.

None yet
3 participants