Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

Package "underscore" ~1.8.3 Has a Security Vulnerability #676

Closed
guy-microsoft opened this issue Apr 4, 2021 · 5 comments
Closed

Package "underscore" ~1.8.3 Has a Security Vulnerability #676

guy-microsoft opened this issue Apr 4, 2021 · 5 comments

Comments

@guy-microsoft
Copy link

Should be updated to 1.12.1 to resolve it.
https://snyk.io/vuln/npm:underscore
@mhassan1
Copy link

mhassan1 commented Apr 7, 2021

This would be resolved by #677

@goelankit
Copy link

Can someone please publish the updated azure-storage package as well.

We are dependent on the azure-storage package and are getting component governance alert for the same.

@GuillermoBlanco
Copy link

#677 Version update has been merged and it's ready to release.

Wondering if there's a programmed release cadence, or any urgency to release security patches.

@phawxby
Copy link

phawxby commented May 6, 2021

Table Storage is feeling more and more like a dead product. The only lib that supports it hasn't been updated in 2 years :-/

@EmmaZhu
Copy link
Member

EmmaZhu commented Aug 3, 2021

A new version 2.10.4 has been published with upgrading to underscore 1.12.1, which should be able to fix this issue.

Thanks
Emma

@EmmaZhu EmmaZhu closed this as completed Sep 27, 2021
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Assignees
No one assigned
Labels
None yet
Projects
None yet
Milestone
No milestone
Development

No branches or pull requests
6 participants
@phawxby @GuillermoBlanco @EmmaZhu @mhassan1 @goelankit @guy-microsoft