Bump socket.io version to get rid of vulnerable xmlhttprequest-ssl package #325

texpert · 2021-05-05T09:13:25Z

My repo using webpack-dashboard has received a security alert CVE-2020-28502 on xmlhttprequest-ssl vulnerability, hence this PR.

…ckage

ryan-roemer

Thanks!

ryan-roemer · 2021-05-05T22:53:29Z

Released in webpack-dashboard@3.3.3

Bump socket.io version to get rid of vulnerable xmlhttprequest-ssl pa…

3b7d52a

…ckage

ryan-roemer approved these changes May 5, 2021

View reviewed changes

ryan-roemer merged commit 0958612 into FormidableLabs:master May 5, 2021

renovate bot mentioned this pull request May 22, 2021

Update dependency webpack-dashboard to ^3.3.7 Christof/gql-github#373

Merged

1 task

renovate bot mentioned this pull request Jun 6, 2021

fix: update webpack-dashboard to v3.3.7 thc-tools/webpack-laboratory#442

Open

1 task

This was referenced Jun 15, 2021

chore(deps): update dependency webpack-dashboard to v3.3.7 - autoclosed jhwohlgemuth/demo-cesium-with-h3#20

Closed

chore(deps): update dependency webpack-dashboard to v3.3.7 - autoclosed jhwohlgemuth/demo-geolocation-react#19

Closed

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

Bump socket.io version to get rid of vulnerable xmlhttprequest-ssl package #325

Bump socket.io version to get rid of vulnerable xmlhttprequest-ssl package #325

texpert commented May 5, 2021

ryan-roemer left a comment

ryan-roemer commented May 5, 2021

Bump socket.io version to get rid of vulnerable xmlhttprequest-ssl package #325

Bump socket.io version to get rid of vulnerable xmlhttprequest-ssl package #325

Conversation

texpert commented May 5, 2021

ryan-roemer left a comment

Choose a reason for hiding this comment

ryan-roemer commented May 5, 2021