High severity issue found in @vercel/postgres

vercel / storage

Vercel Postgres, KV, Blob, and Edge Config

https://vercel.com/storage

Apache License 2.0

479 stars 52 forks source link

High severity issue found in @vercel/postgres #701

Closed Kaushal-Saraf closed 1 week ago

Kaushal-Saraf commented 1 week ago

Severity: high ws affected by a DoS when handling a request with many HTTP headers - https://github.com/advisories/GHSA-3h5v-q93c-6h6q
No fix available node_modules/ws @vercel/postgres * Depends on vulnerable versions of ws node_modules/@vercel/postgres

2 high severity vulnerabilities

luismeyer commented 1 week ago

thank you. Renovate bot already created a PR for this: https://github.com/vercel/storage/pull/697