Closed MegalithOfficial closed 1 year ago
The present use of ajv (^6.5.4) is causing a critical supply chain risk due to an obfuscated "require" function. It has been resolved in the latest version (8.12.0). Updating to the latest version is essential.
Source: https://socket.dev/npm/package/protodef-validator/issues/1.3.1?tab=dependencies
MegalithOfficial
commented
1 year ago
The present use of ajv (^6.5.4) is causing a critical supply chain risk due to an obfuscated "require" function. It has been resolved in the latest version (8.12.0). Updating to the latest version is essential.