search

alexbrazier / simple-update-notifier

Simple update notifier to check for npm updates for cli applications
MIT License
16 stars 9 forks source link

Security advice semver #20

Closed NormandoHall closed 1 year ago

NormandoHall commented 1 year ago

https://github.com/advisories/GHSA-c2qf-rxjj-qqgw

  simple-update-notifier  >=1.0.7
  Depends on vulnerable versions of semver
alexbrazier commented 1 year ago

Closed by #19

Fixed in version 2.0.0