search

bilibili / overlord

Overlord是哔哩哔哩基于Go语言编写的memcache和redis&cluster的代理及集群管理功能,致力于提供自动化高可用的缓存服务解决方案。
https://www.bilibili.com
MIT License
2.22k stars 408 forks source link

There is a vulnerability in lodash 4.17.20 ,upgrade recommended #153

Open QiAnXinCodeSafe opened 3 years ago

QiAnXinCodeSafe commented 3 years ago

https://github.com/bilibili/overlord/blob/b524449801b54115831e7f2663558824bdc15a03/web/yarn.lock#L5135-L5137

CVE-2021-23337 CVE-2020-28500

Recommended upgrade version:4.17.21