Outdated `bin-version-check` dependency - needs version bumping

kevva / bin-wrapper

Binary wrapper that makes your programs seamlessly available as local dependencies

MIT License

152 stars 66 forks source link

Outdated `bin-version-check` dependency - needs version bumping #82

Open KenjiDuggan opened 2 years ago

KenjiDuggan commented 2 years ago

I believe the bin-version-check package should be updated to the latest version of 5.0.0 which would remove the high CVE found here caused by a downstream dependency semver-regex

StanHannebelle commented 1 year ago

Thanks for the great work! I would like to get rid of this vulnerability Would it be possible to upgrade bin-version-check to version 5.0.0 to remove semver-regex dependency ?

ThomasAribart commented 1 year ago

@kevva Need this as well as I have warnings on my projects :/