Skip to content

NPM vulnerability database update #85

New issue

Have a question about this project? # for a free GitHub account to open an issue and contact its maintainers and the community.

#

By clicking “#”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? # to your account

Jump to bottom
Closed
nothingismagick opened this issue May 7, 2021 · 3 comments
Closed

NPM vulnerability database update #85

nothingismagick opened this issue May 7, 2021 · 3 comments

Comments

@nothingismagick
Copy link

nothingismagick commented May 7, 2021
edited
Loading

@bscofield @isaacs

Can you please mark the 2.8.9 release as actually fixing the vuln too?
https://www.npmjs.com/advisories/1677

This is started to trickle downstream:
npm/normalize-package-data#120

Here is the proof, in case anyone needs it:
v2.8.8...v2.8.9
@nothingismagick nothingismagick mentioned this issue May 7, 2021
Closed
@RealDrewKlayman
Copy link

@nothingismagick They just did.

@nothingismagick
Copy link
Author

I'll check locally and then close.

@nothingismagick
Copy link
Author

Thanks, can confirm audit passes.

This was referenced May 10, 2021
Closed
Closed
@lcoq lcoq mentioned this issue May 10, 2021
Closed
This was referenced May 10, 2021
Closed
Closed
# for free to join this conversation on GitHub. Already have an account? # to comment
Assignees
No one assigned
Labels
None yet
Projects
None yet
Milestone
No milestone
Development

No branches or pull requests
2 participants
@nothingismagick @RealDrewKlayman