Closed MGudgin closed 3 years ago
npm audit reports 4 security vulnerabilities;
High Arbitrary Code Execution Package underscore Dependency of typed-rest-client More info https://npmjs.com/advisories/1674
Moderate Regular Expression Denial of Service Package ssri Dependency of webpack [dev] More info https://npmjs.com/advisories/565
High Command Injection Package lodash Dependency of typemoq [dev] More info https://npmjs.com/advisories/1673
High Arbitrary Code Execution Package underscore Dependency of underscore [dev] More info https://npmjs.com/advisories/1674
This PR is the result of running npm audit fix. It updates typed-rest-client to version 1.8.4 and underscore to version 1.13.1 in package.json and makes corresponding and additional changes to package-lock.json
npm audit reports 4 security vulnerabilities;
High Arbitrary Code Execution Package underscore Dependency of typed-rest-client More info https://npmjs.com/advisories/1674
Moderate Regular Expression Denial of Service Package ssri Dependency of webpack [dev] More info https://npmjs.com/advisories/565
High Command Injection Package lodash Dependency of typemoq [dev] More info https://npmjs.com/advisories/1673
High Arbitrary Code Execution Package underscore Dependency of underscore [dev] More info https://npmjs.com/advisories/1674
This PR is the result of running npm audit fix. It updates typed-rest-client to version 1.8.4 and underscore to version 1.13.1 in package.json and makes corresponding and additional changes to package-lock.json