Vulnerability: TrelloAPI's dependency, 'qs'

padlocks / LINK

A service which offers a simple link between ROBLOX services and Discord so all data and user information is united and easy to access. A product of the True Colors Development Team.

0 stars 0 forks source link

Vulnerability: TrelloAPI's dependency, 'qs' #12

Open padlocks opened 4 years ago

padlocks commented 4 years ago

                        === npm audit security report ===                        

                                 Manual Review                                  
             Some vulnerabilities require your attention to resolve             

          Visit https://go.npm.me/audit-guide for additional guidance           

  High            Prototype Pollution Protection Bypass                         

  Package         qs                                                            

  Patched in      >=6.0.4 <6.1.0 || >=6.1.2 <6.2.0 || >=6.2.3 <6.3.0 ||         
                  >=6.3.2                                                       

  Dependency of   trello                                                        

  Path            trello > restler > qs                                         

  More info       https://npmjs.com/advisories/1469