HOFF 694 Upgrade notifications node client to 8.0.0 - Githubissues

UKHomeOfficeForms / hof

Bootstrap a HOF project

MIT License

15 stars 17 forks source link

HOFF 694 Upgrade notifications node client to 8.0.0 #447

Open TemitopeAyokuHO opened 6 months ago

TemitopeAyokuHO commented 6 months ago

What

HOFF-694 Security upgrade notifications-node-client from 6.0.0 to 8.0.0

Why?

Vulnerabilities that will be fixed

With an upgrade:

Severity	Priority Score (*)	Issue	Breaking Change	Exploit Maturity
	676/1000 Why? Proof of Concept exploit, Has a fix available, CVSS 7.1	Cross-site Request Forgery (CSRF) SNYK-JS-AXIOS-6032459	Yes	Proof of Concept

How?

updated the version number in package.json
change in the yarn file