juanfriss
commented
2 months ago This was solved after https://github.com/lob/lob-typescript-sdk/pull/275
Closed comp615 closed 2 months ago
juanfriss
commented
2 months ago This was solved after https://github.com/lob/lob-typescript-sdk/pull/275
Summary
See https://security.snyk.io/vuln/SNYK-JS-AXIOS-6032459
Axios has a vulnerability which is getting pulled in via this packages dependencies
Expected Behavior
No vulnerabilities
Current Behavior
Dependabot not enabled / Vulnerabilities not flagged (https://github.com/lob/lob-typescript-sdk/security)
Possible Solution
Update axios to the latest version and create a Security policy using the link above