You signed in with another tab or window. Reload to refresh your session.You signed out in another tab or window. Reload to refresh your session.You switched accounts on another tab or window. Reload to refresh your session.Dismiss alert
Would it be possible to update some of the dependencies used in node-zillow so that they all pass the "npm audit"? The following have warnings from npm audit as of September 27, 2020:
Would it be possible to update some of the dependencies used in node-zillow so that they all pass the "npm audit"? The following have warnings from npm audit as of September 27, 2020:
Moderate: Prototype Pollution
Package: hoek
Patched in: > 4.2.0 < 5.0.0 || >= 5.0.3
Path: node-zillow > request > hawk > boom > hoek
Path: node-zillow > request > hawk > cryptiles > boom > hoek
Path: node-zillow > request > hawk > hoek
Path: node-zillow > request > hawk > sntp > hoek
More info: https://npmjs.com/advisories/566
Moderate: Out-of-bounds Read
Package: stringstream
Patched in: >=0.0.6
Path: node-zillow > request > stringstream
More info: https://npmjs.com/advisories/664
High: Insufficient Entropy
Package: cryptiles
Patched in: >=4.1.2
Path: node-zillow > request > hawk > cryptiles
More info: https://npmjs.com/advisories/720, https://npmjs.com/advisories/1464
Moderate: Prototype Pollution
Package: extend
Patched in: >=2.0.2 <3.0.0 || >=3.0.2
Path: node-zillow > request > extend
More info: https://npmjs.com/advisories/996
The text was updated successfully, but these errors were encountered: