search

algolia / shipjs

Take control of what is going to be your next release.
https://community.algolia.com/shipjs/
MIT License
765 stars 30 forks source link

[Vulnerability] An issue with shelljs in `shipjs-lib` internal package #968

Closed vinayakkulkarni closed 2 years ago

vinayakkulkarni commented 2 years ago

Describe the bug Not necessarily a bug, but an issue with one of the dependencies – shelljs

To Reproduce npm i shipjs throws an vulnerability

Expected behavior npm audit to show 0 vulnerabilities found.

Screenshots

Screenshot 2022-01-31 at 2 12 17 AM

Environment (please complete the following information):

Additional context Gotta bump up shelljs here – https://github.com/algolia/shipjs/blob/main/packages/shipjs-lib/package.json#L52

Haroenv commented 2 years ago

Thanks for opening the issue. Are you willing to make a PR which updates that dependency?

vinayakkulkarni commented 2 years ago

Thanks for opening the issue. Are you willing to make a PR which updates that dependency?

Done #969

eunjae-lee commented 2 years ago

Thanks for your contribution! Feel free to open a PR to include yourself as contributor :)

yarn contributors:add vinayakkulkarni code