This repository has been archived by the owner on Oct 6, 2020. It is now read-only.
Security vulnerability from locked Hoek and Lodash versions #10
Comments
|
Can this be updated please? It is causing a security vulnerability to my repo. |
Sign up for free
to subscribe to this conversation on GitHub.
Already have an account?
Sign in.
As described here...
https://nodesecurity.io/check/request-http-cache
...locking to major versions lodash:3.x.x and wreck:5.x.x in https://github.com/gitterHQ/request-http-cache/blob/master/package.json means request-http-cache is locked into modules which have known security issues.
Distributing a new version of request-http-cache with a version bump to the latest
lodashandwreckshould address this.The text was updated successfully, but these errors were encountered: