Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

got security vulnerability #464

Open
giovanni-caiazzo opened this issue Jan 27, 2023 · 0 comments
Open

got security vulnerability #464

giovanni-caiazzo opened this issue Jan 27, 2023 · 0 comments

Comments

@giovanni-caiazzo
Copy link

When using npm audit, I get this output

got  <11.8.5
Severity: moderate
Got allows a redirect to a UNIX socket - https://github.com/advisories/GHSA-pfrx-2q88-qq97
node_modules/got
  package-json  <=6.5.0
  Depends on vulnerable versions of got
  node_modules/package-json
    latest-version  0.2.0 - 5.1.0
    Depends on vulnerable versions of package-json
    node_modules/latest-version
      update-notifier  0.2.0 - 5.1.0
      Depends on vulnerable versions of latest-version
      node_modules/update-notifier
        browserstack-cypress-cli  >=1.11.0
        Depends on vulnerable versions of update-notifier
        node_modules/browserstack-cypress-cli

Please update your dependencies to remove the security vulnerability
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Assignees
No one assigned
Labels
None yet
Projects
None yet
Milestone
No milestone
Development

No branches or pull requests
1 participant
@giovanni-caiazzo