Skip to content
This repository has been archived by the owner on Aug 5, 2021. It is now read-only.

Publish a new release with latest dependency #101

Closed
bitinn opened this issue Nov 23, 2019 · 2 comments
Closed

Publish a new release with latest dependency #101

bitinn opened this issue Nov 23, 2019 · 2 comments

Comments

@bitinn
Copy link

bitinn commented Nov 23, 2019

This commit to update knex addresses a vulnerability (even though the vulnerability only affects MSSQL), I would love to see a new release so that my code isn't stuck at vulnerable due to openrecord 2.10.2 still depends on older vulnerable version of knex.

@bitinn
Copy link
Author

bitinn commented Nov 23, 2019

Missed the commit link:

5022e06

Vulnerability link:

GHSA-58v4-qwx5-7f59

@PhilWaldmann
Copy link
Owner

I've just published openrecord@2.10.4 with knex version 0.20.2

Thanks,
Philipp

Sign up for free to subscribe to this conversation on GitHub. Already have an account? Sign in.
Labels
None yet
Projects
None yet
Development

No branches or pull requests

2 participants