Open kevinbror opened 7 years ago
The extract-zip dependency has version 1.5.0 of concat-stream as a dependency. That has a known uninitialized memory exposure vulnerability: https://snyk.io/vuln/npm:concat-stream:20160901. Can that be updated to > 1.5.2 where that is resolved?
The extract-zip dependency has version 1.5.0 of concat-stream as a dependency. That has a known uninitialized memory exposure vulnerability: https://snyk.io/vuln/npm:concat-stream:20160901. Can that be updated to > 1.5.2 where that is resolved?