Vulnerability in dependency

<a href="https://github.com/dyst5422"><img src="https://avatars3.githubusercontent.com/u/13282627?v=4" align="left" width="96" height="96" hspace="10"></img></a> **Issue by [dyst5422](https://github.com/dyst5422)**
_Thursday Dec 07, 2017 at 22:07 GMT_
_Originally opened as https://github.com/graphcool/prisma/issues/1373_

----

There seems to be a vulnerability with using a relatively old version of a dependency.

![screen shot 2017-12-07 at 2 03 38 pm](https://user-images.githubusercontent.com/13282627/33741006-9c198e5e-db57-11e7-88f9-2f868d576c37.png)


Traced it back to graphcool

graphcool@0.10.1 -> graphcool-cli-core@1.8.0 -> download-github-repo@0.1.3 -> download@0.1.19 -> decompress@0.2.5 -> tar@0.1.20


Provide feedback

Saved searches

Use saved searches to filter your results more quickly

Uh oh!

Vulnerability in dependency #433

Metadata

Assignees

Labels

Type

Projects

Milestone

Relationships

Development

Vulnerability in dependency #433

Description

Metadata

Metadata

Assignees

Labels

Type

Projects

Milestone

Relationships

Development

Issue actions