harryho
commented
6 years ago +1
Closed akinhwan closed 6 years ago
harryho
commented
6 years ago +1
trygve-lie
commented
6 years ago We've got the same in a module depending on this module. See: https://nvd.nist.gov/vuln/detail/CVE-2018-7651
iarna
commented
6 years ago As the advisory says, you need to update to ssri@5.2.2 or later. There's no action to be taken here.
akinhwan
commented
6 years ago @iarna thanks, everyone as well!
This is my first time seeing this and pushing to github with this package, but is anyone aware of this vulnerability?
http://prntscr.com/ip9qfy
Above is a screenshot of the alert I received after pushing my entire repo to github, including package.json