You signed in with another tab or window. Reload to refresh your session.You signed out in another tab or window. Reload to refresh your session.You switched accounts on another tab or window. Reload to refresh your session.Dismiss alert
Hi @freeall ... I wonder if there is a chance to get your library updated to use latest version of redis client library? (as of writing, 4.6.7).
When I run npm audit I get the following high severity issue:
redis 2.6.0 - 3.1.0
Severity: high
Node-Redis potential exponential regex in monitor mode - https://github.com/advisories/GHSA-35q2-47q7-3pc3
fix available via `npm audit fix --force`
Will install [email protected], which is a breaking change
node_modules/redis-eventemitter/node_modules/redis
redis-eventemitter >=2.0.1
Depends on vulnerable versions of redis
node_modules/redis-eventemitter
redis-eventemitter has a dependency for redis: ^2.6.3 which is vulnerable to this advisory issue.
Is there a chance you could update the library to use the newest redis module? Cheers!
The text was updated successfully, but these errors were encountered:
Hi @freeall ... I wonder if there is a chance to get your library updated to use latest version of redis client library? (as of writing, 4.6.7).
When I run
npm auditI get the following high severity issue:redis-eventemitter has a dependency for
redis: ^2.6.3which is vulnerable to this advisory issue.Is there a chance you could update the library to use the newest redis module? Cheers!
The text was updated successfully, but these errors were encountered: