Skip to content
This repository has been archived by the owner on Apr 3, 2019. It is now read-only.

Upgrade lodash to prevent prototype pollution attacks #240

Open
DaniGuardiola opened this issue May 15, 2018 · 1 comment
Open

Upgrade lodash to prevent prototype pollution attacks #240

DaniGuardiola opened this issue May 15, 2018 · 1 comment

Comments

@DaniGuardiola
Copy link

More information: https://nodesecurity.io/advisories/577

Please update the dependency in bitcore-mnemonic as well when a non-vulnerable release of bitcore-lib is ready.

Thanks!
@arslananx arslananx mentioned this issue Jul 31, 2018
Closed
@mayk93
Copy link

mayk93 commented Aug 3, 2018

It would be great if we could fix this. While not a major issue, I've encountered this problem as well.

Sign up for free to subscribe to this conversation on GitHub. Already have an account? Sign in.
Assignees
No one assigned
Labels
None yet
Projects
None yet
Milestone
No milestone
Development

Successfully merging a pull request may close this issue.

[Review] Updated lodash version for audit fix arslananx/bitcore-lib
2 participants
@mayk93 @DaniGuardiola