Latest version has vulnerable dependency #75

andreisaikouski · 2023-05-29T13:24:21Z

as per npm audit using paperspace-node@0.2.4

yargs-parser  <=5.0.0
Severity: moderate
yargs-parser Vulnerable to Prototype Pollution - https://github.com/advisories/GHSA-p9pc-299p-vxgp
No fix available
node_modules/paperspace-node/node_modules/yargs-parser
  yargs  4.0.0-alpha1 - 7.0.0-alpha.3 || 7.1.1
  Depends on vulnerable versions of yargs-parser
  node_modules/paperspace-node/node_modules/yargs
    paperspace-node  *
    Depends on vulnerable versions of yargs
    node_modules/paperspace-node

The text was updated successfully, but these errors were encountered:

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

Latest version has vulnerable dependency #75

Latest version has vulnerable dependency #75

andreisaikouski commented May 29, 2023

Latest version has vulnerable dependency #75

Latest version has vulnerable dependency #75

Comments

andreisaikouski commented May 29, 2023