Please update reference to html-pdf

tanhauhau / express-pdf

Express serving pdf

MIT License

7 stars 5 forks source link

Please update reference to html-pdf #4

Open szogun1987 opened 3 years ago

szogun1987 commented 3 years ago

There is known vulnerability in version express-pdf uses:

Critical        Arbitrary File Read                                           

  Package         html-pdf                                                      

  Patched in      >=3.0.1                                                       

  Dependency of   express-pdf                                                   

  Path            express-pdf > html-pdf                                        

  More info       https://npmjs.com/advisories/1095

szogun1987 commented 3 years ago

Is there any problem with upgrading dependendency?