glorat
commented
6 years ago For better information on why this should be done, see https://github.com/cli-table/cli-table3/issues/17
Closed glorat closed 6 years ago
glorat
commented
6 years ago For better information on why this should be done, see https://github.com/cli-table/cli-table3/issues/17
glorat
commented
6 years ago I now see this would be resolved by https://github.com/zemirco/json2csv/pull/302
juanjoDiaz
commented
6 years ago Duplicate of #297
Please see https://github.com/jamestalmage/cli-table2/issues/48 The latest npm cli-table2 is 0.2.0, which json2csv uses. This version has the above security issue because it loads an old lodash. Rather than patching cli-table2, the authors have asked that the cli0-table3 dependency be used instead
https://github.com/cli-table/cli-table3
Please can we switch to that? If maintenance here is constrained, I might do a PR...