HOFF 693 Security upgrade markdown-it from 12.3.2 to 13.0.2 - Githubissues

UKHomeOfficeForms / hof

Bootstrap a HOF project

MIT License

15 stars 17 forks source link

HOFF 693 Security upgrade markdown-it from 12.3.2 to 13.0.2 #446

Open TemitopeAyokuHO opened 6 months ago

TemitopeAyokuHO commented 6 months ago

What

HOFF-693 Security upgrade notifications-node-client from 6.0.0 to 7.0.4

Why?

Vulnerabilities that will be fixed

With an upgrade:

Severity	Priority Score (*)	Issue	Breaking Change	Exploit Maturity
	768/1000 Why? Proof of Concept exploit, Recently disclosed, Has a fix available, CVSS 7.5	Infinite loop SNYK-JS-MARKDOWNIT-6483324	Yes	Proof of Concept

How?

updated the version number in package.json
change in the yarn file