Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

Frontend package vulnerabilities with high Severity #1563

Open
anisubhra-syncron opened this issue Sep 19, 2024 · 1 comment
Open

Frontend package vulnerabilities with high Severity #1563

anisubhra-syncron opened this issue Sep 19, 2024 · 1 comment
Assignees
@dlpzx
Labels
dependencies Pull requests that update a dependency file type: question Further information is requested

Comments

@anisubhra-syncron
Copy link

While deploying our app based on v2.6 upgrade we have found out that few packages are showing vulnerabilities with high severity. Can you please comment on these listed 5 vulnerabilities:

image
@dlpzx dlpzx self-assigned this Sep 25, 2024
@dlpzx dlpzx added type: question Further information is requested dependencies Pull requests that update a dependency file labels Sep 25, 2024
@dlpzx
Copy link
Contributor

dlpzx commented Sep 25, 2024

Hi @anisubhra-syncron thanks for opening an issue. All those vulnerabilities are fixed in the main branch. Here are the links to all dependencies upgrade pull requests since 2.6.0 release. We will soon release 2.7.0 which will contain these upgrades and will resolve the errors you are seeing in npm audit. We can sync offline on the best way to proceed until 2.7 is released

Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Assignees

@dlpzx dlpzx

Labels
dependencies Pull requests that update a dependency file type: question Further information is requested
Projects
None yet
Milestone
No milestone
Development

No branches or pull requests
2 participants
@dlpzx @anisubhra-syncron