Request to check and update vulnerable npm package

Created on 8 March 2024, 10 months ago

Using components with known vulnerability provides an easy attack surface for an attacker to construct and chain attack vectors or payloads.

vulnerable npm package
json-schema

This module has a vulnerable npm package.

You can see this vulnerability by:
1. Download the module
2. Navigate to bootstrap_layout_builder/package-lock.json file
3. Search for the library mentioned above, and you can see the vulnerable package version

Suggestion:
We can upgrade the package version which will resolve the vulnerability.
json-schema version 0.2.3 to 0.4.0

📌 Task
Status

Active

Version

2.1

Component

Code

Created by

🇮🇳India sreeram_v Hyderabad

Live updates comments and jobs are added and updated live.
Sign in to follow issues

Comments & Activities

Production build 0.71.5 2024