Open pbnj opened 7 years ago
The version of request package being used here ("request": "<2.16.0") is vulnerable to remote memory exposure attack.
request
"request": "<2.16.0"
This has been patched up in later versions of request package.
Remediation is as simple as upgrading the dependency to version 2.68.0 or higher.
2.68.0
More information:
The version of
request
package being used here ("request": "<2.16.0"
) is vulnerable to remote memory exposure attack.This has been patched up in later versions of
request
package.Remediation is as simple as upgrading the dependency to version
2.68.0
or higher.More information: