search

RetireJS / retire.js

scanner detecting the use of JavaScript libraries with known vulnerabilities. Can also generate an SBOM of the libraries it finds.
https://retirejs.github.io/retire.js/
Other
3.6k stars 412 forks source link

update zod module #432

Closed b34c0n5 closed 1 month ago

eoftedal commented 1 month ago

What does this do except update the version? What does it fix?

b34c0n5 commented 1 month ago

No vuln. so far, but better be one step ahead than behind.

eoftedal commented 1 month ago

package-lock.json is not included in npm packages and the version specifier is set to "^3.22.4" meaning anyone installing retire would get the latest 3.x.x version.