We've just fixed a critical security vulnerability in ftp-srv, and though your dependencies are not pinned, I thought I would bring this into your view directly.
In your case, we've published a version for 2.x which you can use without changing the major.
We've just fixed a critical security vulnerability in
ftp-srv, and though your dependencies are not pinned, I thought I would bring this into your view directly.In your case, we've published a version for 2.x which you can use without changing the major.
https://github.com/autovance/ftp-srv/security/advisories/GHSA-jw37-5gqr-cf9j