I've raised an issue with SuperAgent and they have updated to version 9 which now uses formidable@^3.5.1. This fixes the vulnerability report:
https://github.com/ladjs/superagent/pull/1800
Is there any chance sumo-logger can be updated to use superagent@^9.0.1?
When using
sumo-logger
we are seeing a critical vulnerability onformidable <3.2.4
which is a dependency ofsuperagent
: https://github.com/advisories/GHSA-8cp3-66vr-3r4cI've raised an issue with SuperAgent and they have updated to version 9 which now uses
formidable@^3.5.1
. This fixes the vulnerability report: https://github.com/ladjs/superagent/pull/1800Is there any chance
sumo-logger
can be updated to usesuperagent@^9.0.1
?