Closed ian-hutchinson closed 2 years ago
Versions of async below 3.2.2 are susceptible to prototype pollution.
async
Github advisory: https://github.com/advisories/GHSA-fwr7-v2mv-hh25 Snyk: https://security.snyk.io/vuln/SNYK-JS-ASYNC-2441827
Opening issue to attach my PR to update dep to.
Fixed in 2.2.5.
justin808
commented
2 years ago justin808
commented
2 years ago
Versions of
asyncbelow 3.2.2 are susceptible to prototype pollution.Github advisory: https://github.com/advisories/GHSA-fwr7-v2mv-hh25 Snyk: https://security.snyk.io/vuln/SNYK-JS-ASYNC-2441827
Opening issue to attach my PR to update dep to.