Security Vulnerability (extend@3.0.1) #2638

k-sai-kiranmayee · 2019-06-04T14:17:26Z

Its a great library, but looks like there might be a security issue with the internal dependency extend@3.0.1

Reference:
https://app.snyk.io/vuln/npm:extend:20180424

Screenshots:

Version:
Quill - 1.3.6

k-sai-kiranmayee · 2019-06-17T10:51:57Z

Hello :)
When can we expect the release with the fix for this and in which version if it is successfully merged?
Thank you!

benbro · 2024-02-02T07:52:03Z

Fixed in v1.3.7

eltimn mentioned this issue Jun 12, 2019

Upgraded extend to 3.0.2 #2650

Closed

jhchen added a commit that referenced this issue Sep 9, 2019

upgrade extend, fixes #2638

544a1f4

lsirivong pushed a commit to voxmedia/quill that referenced this issue Sep 21, 2020

upgrade extend, fixes slab#2638

e238b5c

This was referenced Mar 10, 2021

Bump quill from 1.3.3 to 1.3.7 nshtech/rez-laundry-app#7

Open

Bump quill from 1.3.6 to 1.3.7 Team-CONO/Online_Judge-Ver2.0#6

Merged

dependabot bot mentioned this issue Mar 18, 2021

Bump quill from 1.3.6 to 1.3.7 iafrohack/afro-hack-view#13

Open

benbro closed this as completed Feb 2, 2024

glock18 pushed a commit to glock18/quill that referenced this issue Apr 15, 2024

upgrade extend, fixes slab#2638

d803e54

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

Security Vulnerability (extend@3.0.1) #2638

Security Vulnerability (extend@3.0.1) #2638

k-sai-kiranmayee commented Jun 4, 2019

k-sai-kiranmayee commented Jun 17, 2019

benbro commented Feb 2, 2024

Security Vulnerability (extend@3.0.1) #2638

Security Vulnerability (extend@3.0.1) #2638

Comments

k-sai-kiranmayee commented Jun 4, 2019

k-sai-kiranmayee commented Jun 17, 2019

benbro commented Feb 2, 2024