BrandonCopley
commented
7 years ago What can we do to merge this, as this relates to security concerns. It should be a REALLY simple pull and release to NPM. any chance of this happening?
Open faust64 opened 7 years ago
BrandonCopley
commented
7 years ago What can we do to merge this, as this relates to security concerns. It should be a REALLY simple pull and release to NPM. any chance of this happening?
faust64
commented
7 years ago Merging would indeed be nice. Then again, previously-merged patches weren't pushed to npmjs, ... @BrandonCopley feel free to pull my fork instead: https://www.npmjs.com/package/myknox
prior to 2.6.7,
debugpulls some known-to-be-vulnerable version ofms, according to Snyk https://snyk.io/test/npm/debug/2.6.6Following up on https://github.com/Automattic/knox/pull/293, https://github.com/Automattic/knox/pull/300, https://github.com/Automattic/knox/pull/318