Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

Upgrade google-p12-pem to latest version v3.1.3 to resolve node-forge security vulnerability #412

Closed
iamsalmakolkari opened this issue Jan 26, 2022 · 0 comments · Fixed by #413
Closed

Upgrade google-p12-pem to latest version v3.1.3 to resolve node-forge security vulnerability #412

iamsalmakolkari opened this issue Jan 26, 2022 · 0 comments · Fixed by #413
Assignees
@SurferJeffAtGoogle
Labels
priority: p1 Important issue which blocks shipping the next release. Will be fixed prior to next release. type: bug Error or flaw in code with unintended results or allowing sub-optimal usage patterns.

Comments

@iamsalmakolkari
Copy link

iamsalmakolkari commented Jan 26, 2022
edited

Upgrade google-p12-pem to latest version v3.1.3 to resolve node-forge security vulnerability issue fixed in google-p12-pem#382

more info on node-forge security vulnerability can be found on GHSA-8fr3-hfg3-gpgp
@SurferJeffAtGoogle SurferJeffAtGoogle self-assigned this Jan 26, 2022
@SurferJeffAtGoogle SurferJeffAtGoogle added priority: p1 Important issue which blocks shipping the next release. Will be fixed prior to next release. type: bug Error or flaw in code with unintended results or allowing sub-optimal usage patterns. labels Jan 26, 2022
SurferJeffAtGoogle added a commit that referenced this issue Jan 26, 2022
@SurferJeffAtGoogle
fix: upgrade google-p12-pem to 3.1.3
0c673cf 
Fixes #412
@SurferJeffAtGoogle SurferJeffAtGoogle mentioned this issue Jan 26, 2022
Merged
SurferJeffAtGoogle added a commit that referenced this issue Jan 27, 2022
@SurferJeffAtGoogle
fix: upgrade google-p12-pem to 3.1.3 (#413)
c3cebaf 
Fixes #412
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Assignees

@SurferJeffAtGoogle SurferJeffAtGoogle

Labels
priority: p1 Important issue which blocks shipping the next release. Will be fixed prior to next release. type: bug Error or flaw in code with unintended results or allowing sub-optimal usage patterns.
Projects
None yet
Milestone
No milestone
Development

Successfully merging a pull request may close this issue.

fix: upgrade google-p12-pem to 3.1.3 googleapis/node-gtoken
2 participants
@SurferJeffAtGoogle @iamsalmakolkari