Open albertus82 opened 6 months ago
Hi, it seems that the version of plotly.js included with JuliaCall is affected by CVE-2023-46308:
In Plotly plotly.js before 2.25.2, plot API calls have a risk of proto being polluted in expandObjectPaths or nestedProperty.
Would it be possible to update this dependency in order to fix the vulnerability? Thanks in advance.
Hi, it seems that the version of plotly.js included with JuliaCall is affected by CVE-2023-46308:
Would it be possible to update this dependency in order to fix the vulnerability? Thanks in advance.