-
-
Notifications
You must be signed in to change notification settings - Fork 190
New issue
Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.
By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.
Already on GitHub? Sign in to your account
2 HIGH VULNERABILITIES #1914
Comments
+1 The NPM audit report is as follows: # npm audit report
ip *
Severity: high
ip SSRF improper categorization in isPublic - https://github.com/advisories/GHSA-2p57-rm9w-gvfp
fix available via `npm audit fix --force`
Will install [email protected], which is a breaking change
node_modules/ip
discord-player >=6.6.3-dev.0
Depends on vulnerable versions of ip
node_modules/discord-player
2 high severity vulnerabilities
To address all issues (including breaking changes), run:
npm audit fix --force |
Temp fix. Use the latest discord-player but do not use the IP rotator. |
@zipperdev @Legends-of-NGDB we are using the latest version of |
should be done in latest version. You are required to install |
Run npm i discord-player@latest in your terminal.
NPM says:
94 packages are looking for funding
2 high severity vulnerabilities
The text was updated successfully, but these errors were encountered: