You signed in with another tab or window. Reload to refresh your session.You signed out in another tab or window. Reload to refresh your session.You switched accounts on another tab or window. Reload to refresh your session.Dismiss alert
Hi, @skellock@rdewolff , there is a vulnerability introduced in your package apisauce:
ISSUE DESCRIPTION:
A vulnerability CVE-2022-0536 is introduced in apisauce package through the dependency axios which is 0.21.4 using the follow-redirects package 1.14.0 which actually has this vulnerability. So this vulnerability was patched in the version 1.14.9 of follow-redirects
SUGGESTED SOLUTION:
Need to upgrade the version of axios in apisauce to atleast 0.27.2 as axios 0.27.2 is using the 1.14.9 version of follow-redirects so that the vulnerability is fixed in it
Thanks for your contributions
Regards,
Ankush Gaba
The text was updated successfully, but these errors were encountered:
Hi, @skellock @rdewolff , there is a vulnerability introduced in your package apisauce:
ISSUE DESCRIPTION:
A vulnerability CVE-2022-0536 is introduced in apisauce package through the dependency
axioswhich is0.21.4using thefollow-redirectspackage1.14.0which actually has this vulnerability. So this vulnerability was patched in the version1.14.9offollow-redirectsSUGGESTED SOLUTION:
Need to upgrade the version of
axiosin apisauce to atleast0.27.2as axios0.27.2is using the1.14.9version offollow-redirectsso that the vulnerability is fixed in itThanks for your contributions
Regards,
Ankush Gaba
The text was updated successfully, but these errors were encountered: