Bump pdf.js version for vulnerability

ol-th / pdf-img-convert.js

Simple node package to convert a PDF into images.

MIT License

161 stars 38 forks source link

Bump pdf.js version for vulnerability #53

Open mustangJaro opened 4 months ago

mustangJaro commented 4 months ago

The pdf.js version should be updated to 4.2.67 in order to address the vulnerability shown below.

OleksiiHryhorian commented 4 months ago

arichwei commented 4 months ago

tmoran-stenoa commented 3 months ago

@ol-th Could you please upgrade the pdf.js dependency version when you find the time? It would be much appreciated. Thank you! (On a semi-related note, I've also opened PR #56 to be able to control whether eval is allowed)

chefvivica commented 3 months ago

chefvivica commented 2 months ago

Hi @ol-th I wonder when we should expect this issue to be resolved? Thanks

jason1610 commented 2 months ago

Would be really nice if this gets fixed soon.

VVill-ga commented 1 week ago

+1, this still needs to be resolved