ChuckJonas
commented
9 months ago I'm not sure this CVE actually applies to the cometd js client as it's just handling the client side of the cometd protocol, but with a little but of fuse, I was able to upgrade to the latest version...
152
released as ts-force@3.4.2
andhoe
CometD in version prior to v5.0.11 has a high security issue. CVE-2022-24721 It would be great if the library could be updated, because otherwise we would not be able to continue using ts-force.