Skip to content
This repository was archived by the owner on Jul 26, 2023. It is now read-only.

critical security issue in #308

Open
ThibaultJanBeyer opened this issue Aug 6, 2018 · 1 comment
Open

critical security issue in #308

ThibaultJanBeyer opened this issue Aug 6, 2018 · 1 comment

Comments

@ThibaultJanBeyer
Copy link

Running npm audit gives me:

├ Critical      │ Potential Command Injection                                  │
├───────────────┼──────────────────────────────────────────────────────────────┤
│ Package       │ shell-quote                                                  │
├───────────────┼──────────────────────────────────────────────────────────────┤
│ Patched in    │ >=1.6.1                                                      │
├───────────────┼──────────────────────────────────────────────────────────────┤
│ Dependency of │ karma-jasmine-jquery [dev]                                   │
├───────────────┼──────────────────────────────────────────────────────────────┤
│ Path          │ karma-jasmine-jquery >                                       │
│               │ 34497a90f33530027b70734892e81dd6e6b3dc0e20c9dc19996a70a21a6… │
│               │ > bower > shell-quote                                        │
├───────────────┼──────────────────────────────────────────────────────────────┤
│ More info     │ https://nodesecurity.io/advisories/117                       ┤

As well as some other security issues labelled as High due to outdated dependencies :(
@jonbonraki
Copy link

is this repo still active?

Sign up for free to subscribe to this conversation on GitHub. Already have an account? Sign in.
Assignees
No one assigned
Labels
None yet
Projects
None yet
Milestone
No milestone
Development

No branches or pull requests
2 participants
@jonbonraki @ThibaultJanBeyer