Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

[Security] Lodash vulnerability #244

Open
tiwarishubham635 opened this issue May 7, 2024 · 0 comments
Open

[Security] Lodash vulnerability #244

tiwarishubham635 opened this issue May 7, 2024 · 0 comments

Comments

@tiwarishubham635
Copy link

This library depends on vulnerable versions of lodash
Here is the detailed information - GHSA-35jh-r3h4-6jhm

Currently this library uses lodash v4.17.4 which should be updated

  • library version : 6.1.3
  • Environment : Mac OS
  • Example URL : GHSA-35jh-r3h4-6jhm
  • Other libraries you are using: NA

What did you expect to happen?
Lodash version to be >= 4.17.21

What actually happens
Lodash has vulnerable versions

How to reproduce
Navigate to package.json and look for lodash version

Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Labels
None yet
Projects
None yet
Development

No branches or pull requests

1 participant