luciancor
commented
6 years ago @aureliosaraiva @jasonmit any chance merging this?
Closed luciancor closed 6 years ago
luciancor
commented
6 years ago @aureliosaraiva @jasonmit any chance merging this?
jasonmit
commented
6 years ago This is bumping a devdependency so would not have an impact on your app. The fix was within ember-cli-moment-shim and was released yesterday under 3.5.3.
I'll still merge this but like please upgrade ember-cli-moment-shim for the real security fix :)
luciancor
commented
6 years ago thanks @jasonmit !
https://nvd.nist.gov/vuln/detail/CVE-2017-18214