robdmoore
commented
2 years ago For some reason I'm not able to use npm-force-resolutions to force this dependency to upgrade like I normally would.
This is a deep depedency of (I'm sure many other libraries too) aws-cdk.
Any chance the PR can get merged and released given the criticality of this vulnerability @TooTallNate 🙏?
Just got this from Snyk:
Fix is straightforward, just update the package and republish