bin-wrapper icon indicating copy to clipboard operation
bin-wrapper copied to clipboard
verified publisher icon kevva

Outdated `bin-version-check` dependency - needs version bumping

Open KenjiDuggan opened this issue 3 years ago • 2 comments

I believe the bin-version-check package should be updated to the latest version of 5.0.0 which would remove the high CVE found here caused by a downstream dependency semver-regex Screen Shot 2022-06-07 at 12 39 00 AM

KenjiDuggan avatar Jun 07 '22 04:06 KenjiDuggan

Thanks for the great work! I would like to get rid of this vulnerability Would it be possible to upgrade bin-version-check to version 5.0.0 to remove semver-regex dependency ?

StanHannebelle avatar Jan 24 '23 15:01 StanHannebelle

@kevva Need this as well as I have warnings on my projects :/

ThomasAribart avatar Jan 24 '23 15:01 ThomasAribart