sonatype-2014-0038 shelljs false positive

OSSIndex / vulns

Report missing advisories and corrections on OSS Index

17 stars 12 forks source link

sonatype-2014-0038 shelljs false positive #329

Open asbrum opened 1 year ago

asbrum commented 1 year ago

Vulnerability URL

https://ossindex.sonatype.org/vulnerability/sonatype-2014-0038?component-type=npm&component-name=shelljs&utm_source=proget&utm_medium=integration&utm_content=22.0.9.2

Component URL

https://ossindex.sonatype.org/component/pkg:npm/shelljs

Description As stated in this shelljs issue #1104 and #23 this vulnerability should be considered as false positive

ken-duck commented 1 year ago

Sorry for the delay.

Thank you for your report. We are migrating to a new email-based reporting system in order to better mesh with our internal processes, which will allow us to be more reactive to our users. I have moved your request to the internal tracking system and the research team will look into the issue shortly.

If you notice further issues or would like to follow up on this one, please email ossindex@sonatype.org