Code Quality: installed version of NuGet package LiteDB has a critical vulnerability

files-community / Files

Building the best file manager for Windows

https://files.community

MIT License

33.98k stars 2.17k forks source link

Closed ferrariofilippo closed 1 year ago

ferrariofilippo commented 1 year ago

Currently, we're using a version of LiteDB which has a vulnerability of critical severity. We should upgrade the package to avoid that.

hez2010 commented 1 year ago

Unfortunately we are unable to switch to LiteDB 5.x due to a concurrency issue. See #10250 and #10577.

yaira2 commented 1 year ago

The vulnerability doesn't affect Files so we should be safe.