Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

Prototype Override Protection Bypass Vulnerability #59

Closed
drewjenkins opened this issue Aug 23, 2018 · 1 comment
Closed

Prototype Override Protection Bypass Vulnerability #59

drewjenkins opened this issue Aug 23, 2018 · 1 comment

Comments

@drewjenkins
Copy link

See https://snyk.io/vuln/npm:qs:20170213

To resolve, upgrade your version of qs
@drewjenkins drewjenkins mentioned this issue Aug 23, 2018
Closed
@thornjad
Copy link
Contributor

thornjad commented Aug 31, 2018
edited
Loading

I notice that union currently specifies qs ~2.3.3. Snyk suggests >=6.4.0 to fix this vulnerability, so the large version jump might entail significant changes.

thornjad added a commit to thornjad/union that referenced this issue Sep 3, 2018
@thornjad
upgrade qs dependency
2d1149a 
Previously required version contained a security vulnerability. See flatiron#59

Fixes flatiron#59
@thornjad thornjad mentioned this issue Sep 3, 2018
Merged
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Assignees
No one assigned
Labels
None yet
Projects
None yet
Milestone
No milestone
Development

No branches or pull requests
2 participants
@drewjenkins @thornjad