Open vijaykerure opened 6 months ago
I am using the most recent version of Elastic Builder, and following a vulnerability scan, we discovered a couple Lodash modules with critical vulnerabilities.
Vulnerable versions:
There is no newer version - https://www.npmjs.com/package/lodash.head, https://www.npmjs.com/package/lodash.isstring
PR to eliminate use of those packages is welcome.
I am using the most recent version of Elastic Builder, and following a vulnerability scan, we discovered a couple Lodash modules with critical vulnerabilities.
Vulnerable versions: