Skip to content
New issue

Have a question about this project? # for a free GitHub account to open an issue and contact its maintainers and the community.

#

By clicking “#”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? # to your account

Jump to bottom

Security vulnerability in dependency fast-json-patch #229

Open
ahochsteger opened this issue Mar 24, 2023 · 2 comments · May be fixed by #227
Open

Security vulnerability in dependency fast-json-patch #229

ahochsteger opened this issue Mar 24, 2023 · 2 comments · May be fixed by #227

Comments

@ahochsteger
Copy link

According to npm audit the dependency fast-json-patch has a security vulnerability which can be fixed by upgrading to the latest version 3.1.1:

$ npm audit
# npm audit report

fast-json-patch  <3.1.1
Severity: moderate
Starcounter-Jack JSON-Patch Prototype Pollution vulnerability - https://github.com/advisories/GHSA-8gh8-hqwg-xf34
@josundt
Copy link

josundt commented Apr 13, 2023

Please fix!

@G-Rath
Copy link
Contributor

G-Rath commented Jul 11, 2023

This is a duplicate of #225, and also will be resolved by #227

@G-Rath G-Rath linked a pull request Jul 11, 2023 that will close this issue
Open
# for free to join this conversation on GitHub. Already have an account? # to comment
Assignees
No one assigned
Labels
None yet
Milestone
No milestone
Development

Successfully merging a pull request may close this issue.

fix: update fast-json-patch for security G-Rath/ajv-cli
3 participants
@ahochsteger @G-Rath @josundt