search

yads / nodemailer-express-handlebars

A plugin for nodemailer that uses express-handlebars view engine to generate emails
87 stars 30 forks source link

npm audit high severity vulnerabilities #53

Closed mangos77 closed 2 years ago

mangos77 commented 2 years ago

Al buscar vulnerabilidades con npm audit o intentar corregirlas con npm audit fix muestra:

express-handlebars <5.3.1 Severity: high Insecure template handling in Express-handlebars - https://github.com/advisories/GHSA-fr76-2wp8-fp92 No fix available node_modules/nodemailer-express-handlebars/node_modules/express-handlebars nodemailer-express-handlebars * Depends on vulnerable versions of express-handlebars node_modules/nodemailer-express-handlebars

2 high severity vulnerabilities

**** This no matter what I have installed: "express-handlebars": "^6.0.2",

BrunoRosendo commented 2 years ago

Is it possible to get the version bumped? Thanks a lot

DoStini commented 2 years ago

@yads Can you also update the version in npm? Thanks

yads commented 2 years ago

Version 5.0.0 has been published that updates to latest express-handlebars