Upgrade js-yaml to avoid Denial of Service

cloudfoundry-community / node-cfenv

easy access to your Cloud Foundry application environment for node

Apache License 2.0

73 stars 20 forks source link

Upgrade js-yaml to avoid Denial of Service #39

Closed Teamop closed 5 years ago

Teamop commented 5 years ago

Based on the npm audit, there is an security issue with js-yaml, so upgrade to the latest version to fix. And with the latest js-yaml version, all the test cases can still pass.

pmuellr commented 5 years ago

Now available on npm as version 1.2.1 - https://www.npmjs.com/package/cfenv

Thanks again!