-
Notifications
You must be signed in to change notification settings - Fork 21
New issue
Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.
By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.
Already on GitHub? Sign in to your account
Vulnerability in a pug dependency #33
Comments
I didn't see this part in the README => https://github.com/auth0/webtask-tools#issue-reporting , I don't know if what I reported fit this section but I would suggest to add an issue template for future case like this to warn anyone wanting to report a vulnerability |
@antham oh yeah, I didn't notice that either 😬 FYI I also pinged Auth0 support and they said:
🤞 |
The version of clean-css used by a pug dependency, is resolved to the version 3.4.28 but there is a vulnerability in versions below 4.1.11 (clean-css/clean-css@2929baf).
The text was updated successfully, but these errors were encountered: