search

infinitered / solidarity

Solidarity is an environment checker for project dependencies across multiple machines.
https://infinitered.github.io/solidarity/
MIT License
639 stars 49 forks source link

ejs template injection vulnerability #267

Open phillipkey opened 1 year ago

phillipkey commented 1 year ago

Dependabot is throwing the following security alert:

solidarity@3.0.4 requires ejs@^2.6.1 via a transitive dependency on gluegun@4.7.1

Screen Shot 2022-10-11 at 3 06 43 PM