-
Notifications
You must be signed in to change notification settings - Fork 96
New issue
Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.
By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.
Already on GitHub? Sign in to your account
hoek node module vulnerability #407
Comments
MathJax-node has |
FWIW sounds like a false positive by github: request/request#2926 (comment) |
Thanks for the pointers to the issue. Glad to see that it is not really a vulnerability! |
Here's Github's response. TL;DR: they've gone through and deleted the bad alerts, and promised to be better about validating if security vulnerabilities are legit before putting alerts out. |
FYI the hoek node module is popping up on our dependency graph with this vulnerability: https://nvd.nist.gov/vuln/detail/CVE-2018-3728
The text was updated successfully, but these errors were encountered: