New issue
Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.
By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.
Already on GitHub? Sign in to your account
Fix high snyk security vulnerability in v2 #1615
Comments
v2 isn't affected by that issue: Someone needs to contact Snyk and get them to update the affected version range... |
Contacting Snyk |
snyk ticket 29544 |
Actually, the Snyk severity (CVSS Score) is not suitable. As I mentioned in the report, it should be 5.9 (Medium) |
Snyk fixed the range: Jacky Cheung (Snyk) Hi Matt, This was updated yesterday to reflect the fact that 2.x was not impacted and the public advisory is already showing as such so this should now be correct. Jacky |
Hi there,
Snyk found a new HIGH-security vulnerability: https://security.snyk.io/vuln/SNYK-JS-NODEFETCH-2964180
Could you please apply the fix for node-fetch v2?
We can't update to v3 at the moment and v2 is said to be udpated with bug/security issues.
Best regards
The text was updated successfully, but these errors were encountered: