manticoresearch-javascript icon indicating copy to clipboard operation
manticoresearch-javascript copied to clipboard

Security warning from Depandabot

Open Nick-S-2018 opened this issue 1 year ago • 1 comments

There's a security warning from Depandabot https://github.com/manticoresoftware/openapi/security/dependabot/47 concerning the client. But we cannot apply the suggested change since json-bigint:1.0.0 doesn't work with our client correctly. We need to check for the latest version of json-bigint and see if it still has the same issue.

Nick-S-2018 avatar Oct 31 '24 08:10 Nick-S-2018

There isn't a newer version than 1.0.0 according to https://www.npmjs.com/package/json-bigint?activeTab=versions

What was the problem with version 1.0.0?

sanikolaev avatar Nov 01 '24 05:11 sanikolaev

It has to do with our clients keeping bigints as strings which, for some reason, stopped working together with parsing all numbers by default in 1.0.0 ( that was covered here )

Nick-S-2018 avatar May 13 '25 07:05 Nick-S-2018