Closed tung2744 closed 1 week ago
It seems there is a vulnerability in the ws
package, which is required by ethers
. But we cannot update ethers
because it was required by siwe
which we cannot update.
https://github.com/advisories/GHSA-3h5v-q93c-6h6q
We are not hosting a ws server using the package so it should not affect us?
Replace by https://github.com/authgear/authgear-server/pull/4356
I will open another pr for the package update
In the current main, the server will crash if we have the legacy captcha credential specified.
@pkong-ds