Black duck scanner not allowing Underscore package.

SamDecrock / node-http-ntlm

Node.js module to authenticate using HTTP NTLM

MIT License

192 stars 89 forks source link

Black duck scanner not allowing Underscore package. #95

Closed kunalkagalkar closed 3 years ago

kunalkagalkar commented 3 years ago

Hi Team, We have used Soap package for our recent projects and Soap has httpntlm->underscore@1.7.0 dependency. Its getting restricted by black duck static scanner. Could you please update underscore package? Its halted our production. Please help.

RopoMen commented 3 years ago

Currently npm audit also fails due https://www.npmjs.com/advisories/1674

"soap>httpntlm>underscore"

RopoMen commented 3 years ago

https://github.com/SamDecrock/node-http-ntlm/pull/93