fix: correctly choose key to index pkg lock data

snyk / nodejs-lockfile-parser

Generate a Snyk dependency tree from package-lock.json or yarn.lock file

Other

56 stars 28 forks source link

fix: correctly choose key to index pkg lock data #184

Closed JamesPatrickGill closed 1 year ago

JamesPatrickGill commented 1 year ago

Previously a bad assumption was made about depth of package keys in the pkg lock, this should make sure a valid candidate key is picked or if unable to should not attempt to continue.

snyksec commented 1 year ago

:tada: This PR is included in version 1.48.1 :tada:

The release is available on:

npm package (@latest dist-tag)
GitHub release

Your semantic-release bot :package::rocket: