z-schema vulnerability - Githubissues

APIDevTools / swagger-parser

Swagger 2.0 and OpenAPI 3.0 parser/validator

https://apitools.dev/swagger-parser

MIT License

1.09k stars 154 forks source link

Closed isatria closed 3 years ago

isatria commented 3 years ago

Vulnerability:

|─┬ swagger-parser@8.0.4 |─└┬ z-schema@^4.2.2 |──└┬ validator@^12.0.0

Do you have a schedule to update the z-schema to v5.0.1 anytime soon?

it's causing a medium severity vulnerability since ^4.2.2 still using the validator@^12.0.0.

philsturgeon commented 3 years ago

Done, we'll get a version released when main branch is passing tests.