Adds middleware to your express app to serve the Swagger UI bound to your Swagger document. This acts as living documentation for your API hosted from within your app.
MIT License
1.42k
stars
225
forks
source link
swagger-ui-dist dependency with vulnerability at version 3.38.0 #234
Good to know:
Description
While running an application through a CI pipeline, a step that runs the dependency vulnerability check, raised the following issue:
CWE-79 description
To reproduce
Run dependency-check cli vulnerability tool in any project that has swagger-ui-dist as dependency:
$ dependency-check --scan <path to project>
Expected behavior
No vulnerabilities reported.