Skip to content

Framework introduces minimist version containing a critical CVE. #473

New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom
Closed
sonic1981 opened this issue Sep 5, 2022 · 0 comments · Fixed by #479 or #486
Closed

Framework introduces minimist version containing a critical CVE. #473

sonic1981 opened this issue Sep 5, 2022 · 0 comments · Fixed by #479 or #486
Assignees
@anniefu

Comments

@sonic1981
Copy link

Can mimist be upgraded to version 1.2.6 to avoid the critical CVE detailed here.

Minimist have a published fix, this lib just needs upgrading
@anniefu anniefu self-assigned this Nov 17, 2022
@anniefu anniefu linked a pull request Nov 17, 2022 that will close this issue
chore(deps): bump minimist from 1.2.5 to 1.2.7 in /docs/esm #479
Merged
@anniefu anniefu linked a pull request Nov 17, 2022 that will close this issue
chore(deps): bump minimist from 1.2.5 to 1.2.7 in /experimental/generate_cloud_events #480
Closed
@anniefu anniefu reopened this Nov 17, 2022
@anniefu anniefu linked a pull request Nov 17, 2022 that will close this issue
fix(deps): bump minimist from 1.2.5 to 1.2.7 #486
Merged
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Assignees

@anniefu anniefu

Labels
None yet
Projects
None yet
Milestone
No milestone
2 participants
@sonic1981 @anniefu