jlaw17
commented
3 years ago Following up on this. It seems although Dependabot is enabled in this repo but hasn't picked up on this particular vulnerability
Open jlaw17 opened 3 years ago
jlaw17
commented
3 years ago Following up on this. It seems although Dependabot is enabled in this repo but hasn't picked up on this particular vulnerability
edimitchel
commented
3 years ago The main maintainer has leave the project, and who was added (me) did have right for making PR mergeable..
We've noticed a severe vulnerability as flagged by dependabot running within our repo. Would it be possible to remediate this vulnerability and patch the package?