Skip to content

Upgrade Lodash #220

New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom
Open
santitigaga wants to merge 1 commit into
base: master
Choose a base branch
from
Open

Upgrade Lodash #220

santitigaga wants to merge 1 commit into from

Conversation

@santitigaga
Copy link

@santitigaga santitigaga commented Oct 14, 2021

lodash versions prior to 4.17.21 are vulnerable to Command Injection via the template function.

CVE-2021-23337

@codecov-commenter
Copy link

codecov-commenter commented Oct 14, 2021

Codecov Report

Merging #220 (fe4fe6c) into master (89ce91b) will not change coverage.
The diff coverage is n/a.

Impacted file tree graph

@@           Coverage Diff           @@
##           master     #220   +/-   ##
=======================================
  Coverage   93.62%   93.62%           
=======================================
  Files          34       34           
  Lines         659      659           
  Branches       80       80           
=======================================
  Hits          617      617           
  Misses         29       29           
  Partials       13       13

Continue to review full report at Codecov.

Legend - Click here to learn more
Δ = absolute <relative> (impact), ø = not affected, ? = missing data
Powered by Codecov. Last update 89ce91b...fe4fe6c. Read the comment docs.

Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Reviewers

No reviews

Assignees

No one assigned

Labels

None yet

Projects

None yet

Milestone

No milestone

Development

Successfully merging this pull request may close these issues.

2 participants

@santitigaga @codecov-commenter