Closed timondev closed 2 years ago
https://security.snyk.io/vuln/SNYK-JS-SIMPLEGET-2361683
update simple-get dependency from ^4.0.0 to at least ^4.0.1 to negate security risk.
simple-get
^4.0.0
^4.0.1
"dependencies": { "simple-get": "^4.0.0" },
to
"dependencies": { "simple-get": "^4.0.1" },
it seems that this is not a breaking change (aka no further changes were made to simple-get)
https://github.com/prebuild/prebuild-install/pull/167#issuecomment-1023074227
vweevers
commented
2 years ago vweevers
commented
2 years ago
https://security.snyk.io/vuln/SNYK-JS-SIMPLEGET-2361683
update
simple-getdependency from^4.0.0to at least^4.0.1to negate security risk.to
it seems that this is not a breaking change (aka no further changes were made to
simple-get)