search

stoplightio / elements

Build beautiful, interactive API Docs with embeddable React or Web Components, powered by OpenAPI and Markdown.
https://stoplight.io/open-source/elements/
Apache License 2.0
1.74k stars 202 forks source link

Vulnerability in dependency json-pointer #2057

Open jschaefer77 opened 2 years ago

jschaefer77 commented 2 years ago

Describe the bug

Our scanner found the following vulnerability for json-pointer dependency: https://nvd.nist.gov/vuln/detail/CVE-2021-23820 @stoplight/elements ->@stoplight/elements-core -> @stoplight/json-schema-sampler -> json-pointer

To Reproduce

  1. Given this OpenAPI document '...'
  2. Run this CLI command '....'
  3. See error

Expected behavior

A clear and concise description of what you expected to happen.

Additional context

Add any other context about the problem here.

Screenshots If applicable, add screenshots to help explain your problem.

Environment (remove any that are not applicable):

mnaumanali94 commented 2 years ago

Should be fixed by https://github.com/stoplightio/json-schema-sampler/issues/24