We read every piece of feedback, and take your input very seriously.
To see all available qualifiers, see our documentation.
Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.
By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.
Already on GitHub? Sign in to your account
Generator has a dependency on minimist v1.2.5 that's got a CVE blocking deployments for a lot of folks.
minimist
From https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-44906 - Minimist <=1.2.5 is vulnerable to Prototype Pollution via file index.js, function setKey() (lines 69-95).
Minimist <=1.2.5 is vulnerable to Prototype Pollution via file index.js, function setKey() (lines 69-95).
Current version 1.2.5 - https://github.com/yeoman/generator/blob/main/package.json#L70 Conversation on minimist repo about the CVE here about possible fixes - https://github.com/substack/minimist/issues/164
1.2.5
The text was updated successfully, but these errors were encountered:
This issue is stale because it has been open with no activity. Remove stale label or comment or this will be closed
Sorry, something went wrong.
No branches or pull requests
Generator has a dependency on
minimist
v1.2.5 that's got a CVE blocking deployments for a lot of folks.From https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-44906 -
Minimist <=1.2.5 is vulnerable to Prototype Pollution via file index.js, function setKey() (lines 69-95).
Current version
1.2.5
- https://github.com/yeoman/generator/blob/main/package.json#L70Conversation on
minimist
repo about the CVE here about possible fixes - https://github.com/substack/minimist/issues/164The text was updated successfully, but these errors were encountered: