Open Marija-Pet opened 1 year ago
Dependent package xml2js has a vulnerability
Vulnerability found in xml2js package affecting versions >=0.4.23 <0.5.0 https://security.snyk.io/vuln/SNYK-JS-XML2JS-5414874
How to fix? Upgrade xml2js to version 0.5.0 or higher.
We're seeing this flagged by component governance as well.
Dependent package xml2js has a vulnerability
Summary
Vulnerability found in xml2js package affecting versions >=0.4.23 <0.5.0 https://security.snyk.io/vuln/SNYK-JS-XML2JS-5414874
How to fix? Upgrade xml2js to version 0.5.0 or higher.