Closed makandz closed 1 year ago
There seems to be a vulnerability within dicer with no known fix from the Snyk Vulnerability Database (https://security.snyk.io/vuln/SNYK-JS-DICER-2311764)
dicer
There appears to be a PR open on dicer to resolve this but it's been open since 2021 with no merge. https://github.com/mscdex/dicer/pull/22
Is this known and are there any plans to move away from dicer to an alternative?
I should also probably mention that this package dicer is coming from busboy
busboy
🤦 ignore this, turns out I was on an older version of graphql-upload.
There seems to be a vulnerability within
dicer
with no known fix from the Snyk Vulnerability Database (https://security.snyk.io/vuln/SNYK-JS-DICER-2311764)There appears to be a PR open on dicer to resolve this but it's been open since 2021 with no merge. https://github.com/mscdex/dicer/pull/22
Is this known and are there any plans to move away from dicer to an alternative?