[V3] Fix CVE-2022-0764 #12879
Labels
good first issue
Good for newcomers
issue: bug
Issue reporting a bug
issue: security
Issue reporting a security problem
severity: low
If the issue only affects a very niche base of users and an easily implemented workaround can solve
source: core:strapi
Source is core/strapi package
status: confirmed
Confirmed by a Strapi Team member or multiple community members
Bug report
Describe the bug
There is a security vulnerability in Strapi that prevents our deployment pipeline from running. There is already a fix implemented for v4.x, but upgrading is not on our short-term road map for now. It seems like the fix from v4 can be copied to v3 1 on 1, but since I've never contributed to this repository I was hoping there was someone willing to back-port the fix to v3.
Other information
The text was updated successfully, but these errors were encountered: