Closed jlyons210 closed 2 months ago
Upgrade undici to version 5.28.3 or later.
This dependency comes from discord.js@14.14.1, which is packaged with undici@5.27.2. Will need discord.js to update first.
discord.js@14.14.1
undici@5.27.2
discord.js
discord.js reports that it is not vulnerable to the CVE as they don't use the impacted functionality. Will close this once the next release is published that resolves the dependency.
Upgrade undici to version 5.28.3 or later.