New issue
Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.
By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.
Already on GitHub? Sign in to your account
Lodash vulnerability #95
Comments
PRs are welcome :)
…On Fri., 12 Oct. 2018, 4:31 am Patrick Silva, ***@***.***> wrote:
There's a security vulnerability <https://david-dm.org/xzyfer/sass-graph>
in the version of loadash used here.
Using the latest seems to solve the issue.
Could someone bump the version and publish it to npm, please?
Much appreciated 🙏
—
You are receiving this because you are subscribed to this thread.
Reply to this email directly, view it on GitHub
<#95>, or mute the thread
<https://github.com/notifications/unsubscribe-auth/AAjZWA0Q9-swt9AXnEL_ljoIlS0yFqJjks5uj4B5gaJpZM4XYBa9>
.
|
patricksmms
added a commit
to patricksmms/sass-graph
that referenced
this issue
Oct 12, 2018
xzyfer
pushed a commit
that referenced
this issue
Oct 12, 2018
@xzyfer can you please publish to npm? |
Published 3.0.2
…On Fri., 12 Oct. 2018, 8:43 pm Patrick Silva, ***@***.***> wrote:
@xzyfer <https://github.com/xzyfer> can you please publish to npm?
—
You are receiving this because you were mentioned.
Reply to this email directly, view it on GitHub
<#95 (comment)>,
or mute the thread
<https://github.com/notifications/unsubscribe-auth/AAjZWBJX-Ruc7CenZjg_z4U1P5Is3NJYks5ukGQ4gaJpZM4XYBa9>
.
|
patricksmms
added a commit
to patricksmms/sass-graph
that referenced
this issue
Oct 15, 2018
xzyfer
pushed a commit
that referenced
this issue
Oct 16, 2018
nashiko
pushed a commit
to nashiko/js-graph-dependency
that referenced
this issue
Mar 24, 2022
nashiko
pushed a commit
to nashiko/js-graph-dependency
that referenced
this issue
Mar 24, 2022
Sign up for free
to join this conversation on GitHub.
Already have an account?
Sign in to comment
There's a security vulnerability in the version of loadash used here.
Using the latest seems to solve the issue.
Could someone bump the version and publish it to npm, please?
Much appreciated 🙏
The text was updated successfully, but these errors were encountered: