dustjs icon indicating copy to clipboard operation
dustjs copied to clipboard
verified publisher icon linkedin

Security Issue: Upgrade to higher version of Chokidar

Open aparnacyanam opened this issue 6 years ago • 2 comments

Dustjs-linkedin 2.7.5 is dependent on older version of Chokidar 1.5.2 which in turn depends on the package with security vulnerability image

https://exchange.xforce.ibmcloud.com/vulnerabilities/167421 image

Could you please update the dependency Chokidar to the version which overcomes this vulnerability?

aparnacyanam avatar Oct 10 '19 14:10 aparnacyanam

Will we get some update/fix on this?

ChunxiAlexLuo avatar Aug 19 '20 15:08 ChunxiAlexLuo

Dustjs sounds like an abandoned project. Theres'no any relevant upgrade a long time. I charged many time trying to understand and implement it in my project but nowdays i'm moving it to Vue.js.

Em qua, 19 de ago de 2020 12:41, Alex Luo [email protected] escreveu:

Will we get some update/fix on this?

— You are receiving this because you are subscribed to this thread. Reply to this email directly, view it on GitHub https://github.com/linkedin/dustjs/issues/797#issuecomment-676503640, or unsubscribe https://github.com/notifications/unsubscribe-auth/AB2FRKSZW23VEJNL362E3ITSBPXDPANCNFSM4I7N2YIQ .

gilsondelrei avatar Aug 19 '20 16:08 gilsondelrei