Closed trakout closed 8 years ago
Updated request dependancy to 2.72.0, which uses hawk 3.1.3. Previous versions of hawk are vulnerable to a regex DOS (fbgraph currently uses v1.1.1).
Please see this CVE for more info: https://nodesecurity.io/advisories/77
Updated request dependancy to 2.72.0, which uses hawk 3.1.3. Previous versions of hawk are vulnerable to a regex DOS (fbgraph currently uses v1.1.1).
Please see this CVE for more info: https://nodesecurity.io/advisories/77