Open jisoolee opened 4 years ago
Patch available for extend@3.0.1 ✗ Prototype Pollution [High Severity][https://snyk.io/vuln/npm:extend:20180424] in extend@3.0.1 introduced by json-schema-generator@2.0.6 > request@2.83.0 > extend@3.0.1 and 2 other path(s)
This might be a duplicate of https://github.com/krg7880/json-schema-generator/issues/27 , but it seems the latest json-schema-generator@2.0.6 has old request which contain extend@3.0.1.
json-schema-generator@2.0.6
request
extend@3.0.1
Need a new version of it to pick up the extend@3.0.2 based on https://snyk.io/vuln/npm:extend:20180424 .
extend@3.0.2
This might be a duplicate of https://github.com/krg7880/json-schema-generator/issues/27 , but it seems the latest
json-schema-generator@2.0.6
has oldrequest
which containextend@3.0.1
.Need a new version of it to pick up the
extend@3.0.2
based on https://snyk.io/vuln/npm:extend:20180424 .