Skip to content
This repository has been archived by the owner on Dec 13, 2018. It is now read-only.

npm audit fails #4

Open
jhannes opened this issue May 20, 2018 · 1 comment
Open

npm audit fails #4

jhannes opened this issue May 20, 2018 · 1 comment

Comments

@jhannes
Copy link

jhannes commented May 20, 2018

I used the mimemessage npm package in a project. When running npm audit I get:

> npm audit

=== npm audit security report ===
# Run  npm update debug --depth 2  to resolve 1 vulnerability

Low             Regular Expression Denial of Service
Package         debug
Dependency of   mimemessage
Path            mimemessage > debug
More info       https://nodesecurity.io/advisories/534

Update your dependency on debug to fix the warning
ibc added a commit to ibc/mimemessage.js that referenced this issue May 22, 2018
@ibc
1.0.5 (update deps and fix eface2face#4)
cc11478
@ibc
Copy link
Contributor

ibc commented May 22, 2018

It's been fixed in 1.0.5 (in my fork) and published to NPM.

NOTE: There are still some audit warnings but just related to packages under devDependencies.

KAYLukas referenced this issue in ProtonMail/mimemessage.js Oct 18, 2018
@KAYLukas
Merge pull request #2 from ibc/master
9e598e2 
1.0.5 (update deps and fix #4)
Sign up for free to subscribe to this conversation on GitHub. Already have an account? Sign in.
Assignees
No one assigned
Labels
None yet
Projects
None yet
Milestone
No milestone
Development

No branches or pull requests
2 participants
@ibc @jhannes