search

JetBrains / lets-plot

Multiplatform plotting library based on the Grammar of Graphics
https://lets-plot.org
MIT License
1.57k stars 51 forks source link

Upgrade to newer version of `ws` #1150

Open sunnyayyl opened 3 months ago

sunnyayyl commented 3 months ago

According to npm audit ws have a security vulnerability, please consider upgrading it

# npm audit report

ws  8.0.0 - 8.17.0
Severity: high
ws affected by a DoS when handling a request with many HTTP headers - https://github.com/advisories/GHSA-3h5v-q93c-6h6q
fix available via `npm audit fix --force`
Will install ws@8.18.0, which is outside the stated dependency range
node_modules/ws

1 high severity vulnerability

To address all issues, run:
  npm audit fix --force

Thanks!