Closed dylanpyle closed 6 years ago
Looks like:
Not sure how feasible it is to remove/upgrade this chain of dependencies, but the end result is this in every project which uses svg2png:
— since apparently hoek < 5.0.3 contains security vulnerabilities.
If someone can demonstrate an attack against svg2png, I am happy to investigate this, but in general I do not find these kind of automated "vulnerability" findings to be useful.
Looks like:
Not sure how feasible it is to remove/upgrade this chain of dependencies, but the end result is this in every project which uses svg2png:
— since apparently hoek < 5.0.3 contains security vulnerabilities.