Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

ts: fix CVE-2020-8237 security alert #264

Open
frenchvandal opened this issue May 16, 2021 · 0 comments
Open

ts: fix CVE-2020-8237 security alert #264

frenchvandal opened this issue May 16, 2021 · 0 comments

Comments

@frenchvandal
Copy link

嗨!你可以更新这些依赖吗?

# npm audit report

json-bigint  <1.0.0
Severity: high
Uncontrolled Resource Consumption in json-bigint - https://npmjs.com/advisories/1690
No fix available
node_modules/json-bigint
  @alicloud/credentials  1.0.0 - 1.1.0
  Depends on vulnerable versions of json-bigint
  node_modules/@alicloud/oss-baseclient/node_modules/@alicloud/credentials
    @alicloud/oss-baseclient  *
    Depends on vulnerable versions of @alicloud/credentials
    node_modules/@alicloud/oss-baseclient
      @alicloud/oss-client  *
      Depends on vulnerable versions of @alicloud/oss-baseclient
      node_modules/@alicloud/oss-client
@frenchvandal frenchvandal changed the title Security vulnerability: please update OSS SDK for TypeScript/Node.js ts: correct CVE-2020-8237 security alert May 16, 2021
@frenchvandal frenchvandal changed the title ts: correct CVE-2020-8237 security alert ts: fix CVE-2020-8237 security alert May 16, 2021
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Assignees
No one assigned
Labels
None yet
Projects
None yet
Milestone
No milestone
Development

No branches or pull requests
1 participant
@frenchvandal