eface2face / mimemessage.js

MIME messages for JavaScript (RFC 2045 & 2046)
MIT License
23 stars 11 forks source link

npm audit fails #4

Open jhannes opened 6 years ago

jhannes commented 6 years ago

I used the mimemessage npm package in a project. When running npm audit I get:

> npm audit

=== npm audit security report ===
# Run  npm update debug --depth 2  to resolve 1 vulnerability

Low             Regular Expression Denial of Service
Package         debug
Dependency of   mimemessage
Path            mimemessage > debug
More info       https://nodesecurity.io/advisories/534

Update your dependency on debug to fix the warning

ibc commented 6 years ago

It's been fixed in 1.0.5 (in my fork) and published to NPM.

NOTE: There are still some audit warnings but just related to packages under devDependencies.