search

zemirco / json2csv

Convert json to csv with column titles
http://zemirco.github.io/json2csv
MIT License
2.71k stars 365 forks source link

Update Lodash Dependencies for patch vulnerability #297

Closed fredy-bambang closed 6 years ago

fredy-bambang commented 6 years ago

i use json2csv with version: "^4.1.2" looks like found and security issue in this package dependencies, is possible fix this package? Thank you. security_audit_json2csv

juanjoDiaz commented 6 years ago

Thanks for reporting! I'll look into this shortly.

juanjoDiaz commented 6 years ago

Just to follow up, the issue is not in json2csv but in cli-table2, one of our dependencies. I'm currently looking at solving the problem.

rperlmuter commented 6 years ago

Thanks, we are also expecting to get a fix for this issue

juanjoDiaz commented 6 years ago

Working on it! 😄

rperlmuter commented 6 years ago

Thanks a lot,

Ron

From: Juanjo Diaz notifications@github.com Reply-To: zemirco/json2csv reply@reply.github.com Date: Wednesday, 30 May 2018 at 16:09 To: zemirco/json2csv json2csv@noreply.github.com Cc: Ron Perlmuter rperlmuter@paloaltonetworks.com, Comment comment@noreply.github.com Subject: Re: [zemirco/json2csv] Update Lodash Dependencies for patch vulnerability (#297)

Working on it! 😄

— You are receiving this because you commented. Reply to this email directly, view it on GitHubhttps://urldefense.proofpoint.com/v2/url?u=https-3A__github.com_zemirco_json2csv_issues_297-23issuecomment-2D393154992&d=DwMFaQ&c=V9IgWpI5PvzTw83UyHGVSoW3Uc1MFWe5J8PTfkrzVSo&r=b7svXJ2fp0U9OwEcnUMvq87p_2bbp_10Y9Yz_xXAmzU&m=Q86pOIcZwAI2tfH7j9wUyTvbSBz07qjMIiTMboZSDfs&s=yhSZ095-iSZf-tVvP_J12HjKPUxQRUvTqOzu1w0MoYo&e=, or mute the threadhttps://urldefense.proofpoint.com/v2/url?u=https-3A__github.com_notifications_unsubscribe-2Dauth_AVBkfbDnMC-2DxpFJR48S5u255F-5FQv2A2rks5t3pnpgaJpZM4UGotX&d=DwMFaQ&c=V9IgWpI5PvzTw83UyHGVSoW3Uc1MFWe5J8PTfkrzVSo&r=b7svXJ2fp0U9OwEcnUMvq87p_2bbp_10Y9Yz_xXAmzU&m=Q86pOIcZwAI2tfH7j9wUyTvbSBz07qjMIiTMboZSDfs&s=g_6amX5VJteTBfV6_ChfTJlniBmPE3yogWCbCeniDL8&e=.

rperlmuter commented 6 years ago

Thanks a lot ☺

Ron

From: Ilya Radchenko notifications@github.com Reply-To: zemirco/json2csv reply@reply.github.com Date: Thursday, 12 July 2018 at 21:39 To: zemirco/json2csv json2csv@noreply.github.com Cc: Ron Perlmuter rperlmuter@paloaltonetworks.com, Comment comment@noreply.github.com Subject: Re: [zemirco/json2csv] Update Lodash Dependencies for patch vulnerability (#297)

Closed #297https://urldefense.proofpoint.com/v2/url?u=https-3A__github.com_zemirco_json2csv_issues_297&d=DwMCaQ&c=V9IgWpI5PvzTw83UyHGVSoW3Uc1MFWe5J8PTfkrzVSo&r=b7svXJ2fp0U9OwEcnUMvq87p_2bbp_10Y9Yz_xXAmzU&m=p0ssI42TqpHIV2QObMjbTSf9AZemG3Kk05OAKQ00SXk&s=ZQuD7cd8EnOIJs3dsa8Y7NS1YJnphdg4f-KUW3oStno&e= via #312https://urldefense.proofpoint.com/v2/url?u=https-3A__github.com_zemirco_json2csv_pull_312&d=DwMCaQ&c=V9IgWpI5PvzTw83UyHGVSoW3Uc1MFWe5J8PTfkrzVSo&r=b7svXJ2fp0U9OwEcnUMvq87p_2bbp_10Y9Yz_xXAmzU&m=p0ssI42TqpHIV2QObMjbTSf9AZemG3Kk05OAKQ00SXk&s=tZ4JRmp2GnhqQU5lIW53EqwtTgr3ZxZluUPJBjJItb4&e=.

— You are receiving this because you commented. Reply to this email directly, view it on GitHubhttps://urldefense.proofpoint.com/v2/url?u=https-3A__github.com_zemirco_json2csv_issues_297-23event-2D1731018671&d=DwMCaQ&c=V9IgWpI5PvzTw83UyHGVSoW3Uc1MFWe5J8PTfkrzVSo&r=b7svXJ2fp0U9OwEcnUMvq87p_2bbp_10Y9Yz_xXAmzU&m=p0ssI42TqpHIV2QObMjbTSf9AZemG3Kk05OAKQ00SXk&s=B3KTGEd5AwIf8QE_92onHbxU8jr7Uk29dOAOhSL6_Ik&e=, or mute the threadhttps://urldefense.proofpoint.com/v2/url?u=https-3A__github.com_notifications_unsubscribe-2Dauth_AVBkfVpKERj9whef936cFAXKE4g45nciks5uF5fpgaJpZM4UGotX&d=DwMCaQ&c=V9IgWpI5PvzTw83UyHGVSoW3Uc1MFWe5J8PTfkrzVSo&r=b7svXJ2fp0U9OwEcnUMvq87p_2bbp_10Y9Yz_xXAmzU&m=p0ssI42TqpHIV2QObMjbTSf9AZemG3Kk05OAKQ00SXk&s=g3GhFZ6Mrw0VP7bbktFt4d-15Rad1zYoHN3UJLKDKFc&e=.