Closed Turbotailz closed 4 years ago
@brianreavis Any chance you can take a look at this in the near future?
+1 to taking a look; a number of upstream packages are stuck until this gets merged. Thanks so much!
Would like to see this resolved soon!
+1 to resolving this soon please. Thanks a lot!
@brianreavis Github is pushing automated notifications on all pull requests now for vulnerabilities like this. Any chance we can see this merged?
I've sent a email message and a tweet to @brianreavis remembering him that PRs are already open. I hope do not bother him 🙃
Hi all – my apologies on the radio silence. For what it’s worth, this reported vulnerability has no impact on any project using sifter (e.g. selectize). Further, it doesn’t impact the CLI, as we don’t use the cast
option. Regardless, that dependency’s now bumped so your scanners should be happier now. It’s updated in 0.5.4 and 0.6.0.
Fixes #55