Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

vulnerabilities reported by npm audit #2396

Closed
electriquo opened this issue May 19, 2022 · 1 comment
Closed

vulnerabilities reported by npm audit #2396

electriquo opened this issue May 19, 2022 · 1 comment
Labels
state: duplicate

Comments

@electriquo
Copy link

Is this a feature request or a bug?

security

What is the current behavior?

npm audit for the version 6.8.0 (latest) is reporting for vulnerabilities

$ jq '.dependencies' package.json
{
  "web-ext": "6.8.0"
}

$ npm audit
...
5 vulnerabilities (1 moderate, 4 high)
...

What is the expected or desired behavior?

npm audit should not report any vulnerabilities

Version information (for bug reports)

$ node --version && npm --version && npx web-ext --version
v16.15.0
8.10.0
6.8.0
@electriquo electriquo changed the title vulnerabilities reported by npm vulnerabilities reported by npm audit May 19, 2022
@rpl
Copy link
Member

rpl commented May 19, 2022

That's unfortunately due to the adbkit, I'm closing this as a duplicate of #2389 which is also related to the advisories that the adbkit dependency introduces in the tree of dependencies.

@rpl rpl closed this as completed May 19, 2022
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Assignees
No one assigned
Labels
state: duplicate
Projects
None yet
Milestone
No milestone
Development

No branches or pull requests
2 participants
@rpl @electriquo