save icon indicating copy to clipboard operation
save copied to clipboard
verified publisher icon serby

Poisoned event-stream dependency

Open oliversalzburg opened this issue 7 years ago • 0 comments

This is regarding https://github.com/dominictarr/event-stream/issues/116

[email protected] depends on event-stream@^3.3.4. This has the potential to resolve its dependency on flatmap-stream@^0.1.0 to a version that included the malware.

The dependency version should probably be locked down to 3.3.4 at this time.

oliversalzburg avatar Nov 26 '18 19:11 oliversalzburg