search

otasoft / otasoft-api

🚪 API Gateway Booking Engine for Online Travel Agencies
MIT License
20 stars 4 forks source link

[Snyk] Upgrade openid-client from 4.4.0 to 4.7.2 #193

Closed snyk-bot closed 3 years ago

snyk-bot commented 3 years ago

Snyk has created this PR to upgrade openid-client from 4.4.0 to 4.7.2.

merge advice As this is a private repository, Snyk-bot does not have access. Therefore, this PR has been created automatically, but appears to have been created by a real user.
:information_source: Keep your dependencies up-to-date. This makes it easier to fix existing vulnerabilities and to more quickly identify and fix newly disclosed vulnerabilities when they affect your project.

The recommended version fixes:

Severity Issue PriorityScore (*) Exploit Maturity
Timing Attack
SNYK-JS-JOSE-1251487		 295/1000
Why? CVSS 5.9		 No Known Exploit

(*) Note that the real score may have changed since the PR was raised.

Note: You are seeing this because you or someone else with access to this repository has authorized Snyk to open upgrade PRs.

For more information:

🧐 View latest project report

🛠 Adjust upgrade PR settings

🔕 Ignore this dependency or unsubscribe from future upgrade PRs

github-actions[bot] commented 3 years ago

Stale pull request message