Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

passport-apple depending on vulnerable version of jsonwebtoken #123

Closed
yeshamavani opened this issue Jan 11, 2023 · 1 comment · Fixed by #124
Closed

passport-apple depending on vulnerable version of jsonwebtoken #123

yeshamavani opened this issue Jan 11, 2023 · 1 comment · Fixed by #124
Labels
released

Comments

@yeshamavani
Copy link
Contributor

Describe the bug
Latest version passport-apple depends on vulnerable version of jsonwebtoken@8.5.1

To Reproduce
Steps to reproduce the behavior:

  1. Go to your workspace
  2. Run npm audit
  3. Check the logs

Expected behavior
npm audit should have 0 vulnerabilities.
yeshamavani added a commit that referenced this issue Jan 11, 2023
@yeshamavani
fix(deps): solve passport-apple depending on vulnerable version of js…
ce2d557 
…onwebtoken

forked the passport-apple repo
 changed the vulnerable version deps

GH-123
@yeshamavani yeshamavani mentioned this issue Jan 11, 2023
Merged
10 tasks
yeshamavani added a commit that referenced this issue Jan 11, 2023
@yeshamavani
fix(deps): solve passport-apple depending on vulnerable version of js…
8e26c92 
…onwebtoken (#124)

forked the passport-apple repo
 changed the vulnerable version deps

GH-123
@yeshamavani
Copy link
Contributor Author

🎉 This issue has been resolved in version 7.3.1 🎉

The release is available on:

Your semantic-release bot 📦🚀

Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Assignees
No one assigned
Labels
released
Projects
None yet
Milestone
No milestone
1 participant
@yeshamavani