Open jehadbaeth opened 4 years ago
Please, take a look at our PR fixing the three issues outlined in the report you have provided: https://github.com/madfish-solutions/thanos-wallet/pull/100 and let us know whether these fixes are sufficient.
Fix for this specific issue: https://github.com/madfish-solutions/thanos-wallet/pull/100/commits/18b3d16ded37e26ef3692b8cecd2c194f6b10e9f, https://github.com/madfish-solutions/thanos-wallet/pull/100/commits/2b2a0375e85afce0b32f0f52d2ed00cd210a70df
Result:
yarn audit v1.22.5
0 vulnerabilities found - Packages audited: 1361
Thanks in advance!
a classic one :)
one that caught my eye (just to assert that this needs to be addressed)
FYI running yarn audit fix is not working .
there is a couple of ways to run an automatic upgrade of dependencies 1- manual 2- an implementation of the above-mentioned method