Updating the underscore npm used in node-http-ntlm version

SamDecrock / node-http-ntlm

Node.js module to authenticate using HTTP NTLM

MIT License

192 stars 89 forks source link

Updating the underscore npm used in node-http-ntlm version #97

Closed ghost closed 3 years ago

ghost commented 3 years ago

the latest version of https://www.npmjs.com/package/httpntlm bundles a vulnerable version of underscore@1.7.0 which has a security advisory attached to it as per npm audit. Can you please also update the dependencies used in httpntlm allowing secure usage of your npm.

Thanks for everything!

SamDecrock commented 3 years ago

Fixed and merged https://github.com/SamDecrock/node-http-ntlm/pull/93