Skip to content
This repository has been archived by the owner on Feb 12, 2024. It is now read-only.

Github vulnerability warning: cryptiles #1862

Closed
pedrouid opened this issue Feb 3, 2019 · 3 comments
Closed

Github vulnerability warning: cryptiles #1862

pedrouid opened this issue Feb 3, 2019 · 3 comments
Assignees
@alanshaw
Labels
kind/bug A bug in existing code (including security flaws) P1 High: Likely tackled by core team if no one steps up

Comments

@pedrouid
Copy link

pedrouid commented Feb 3, 2019

I'm getting the following warning from Github on a nested dependency vulnerability

screenshot 2019-02-02 19 47 02

https://nvd.nist.gov/vuln/detail/CVE-2018-1000620
@pedrouid
Copy link
Author

pedrouid commented Feb 3, 2019

package.json

{
  // ...
  "dependencies": {
    "ipfs": "^0.34.4"
  }
}

@alanshaw
Copy link
Member

alanshaw commented Feb 3, 2019

Thanks for reporting - it'll be resolved by #1844

@alanshaw alanshaw mentioned this issue Feb 3, 2019
Merged
1 task
@alanshaw alanshaw added kind/bug A bug in existing code (including security flaws) status/in-progress In progress P1 High: Likely tackled by core team if no one steps up labels Feb 4, 2019
@alanshaw alanshaw self-assigned this Feb 4, 2019
@alanshaw
Copy link
Member

alanshaw commented Feb 7, 2019

#1844 got merged!

@alanshaw alanshaw closed this as completed Feb 7, 2019
@ghost ghost removed the status/in-progress In progress label Feb 7, 2019
Sign up for free to subscribe to this conversation on GitHub. Already have an account? Sign in.
Assignees

@alanshaw alanshaw

Labels
kind/bug A bug in existing code (including security flaws) P1 High: Likely tackled by core team if no one steps up
Projects
None yet
Milestone
No milestone
Development

No branches or pull requests
2 participants
@alanshaw @pedrouid