mdlavin
commented
6 years ago @DavidTanner is there anything I can do to make you more comfortable merging this? I'd love to pickup the security fixes in my projects
Closed mdlavin closed 6 years ago
mdlavin
commented
6 years ago @DavidTanner is there anything I can do to make you more comfortable merging this? I'd love to pickup the security fixes in my projects
mdlavin
commented
6 years ago @DavidTanner Thank you! I'll keep an eye out for a new published version
DavidTanner
commented
6 years ago This is deployed as 2.0.2
Upstream projects often release fixes for security vulnerabilities. Specifically, the aws 2.171.0 version is affected by https://snyk.io/vuln/npm:crypto-browserify:20140722 and the newer versions have a fix for it.