Skip to content

fix(deps): update dependencies to solve high vulnerabilities #1242

New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom
Open
TakahashiNguyen wants to merge 23 commits into
base: main
Choose a base branch
from
Open

fix(deps): update dependencies to solve high vulnerabilities #1242

TakahashiNguyen wants to merge 23 commits into from

Conversation

@TakahashiNguyen
Copy link

@TakahashiNguyen TakahashiNguyen commented Jan 28, 2025

This PR hopefully fixes an issue where install the package gives project 32 high vulnerabilities.

TakahashiNguyen added 22 commits January 27, 2025 17:05
@TakahashiNguyen TakahashiNguyen mentioned this pull request Jan 28, 2025
Open
@TakahashiNguyen TakahashiNguyen changed the title fix: update dependencies to solve high vulnerabilities fix(deps): update dependencies to solve high vulnerabilities Jan 28, 2025
@ricono-tyler
Copy link

ricono-tyler commented Mar 17, 2025

Any chance this will actually get reviewed and merged in?

@frantisekff
Copy link

frantisekff commented Apr 15, 2025

Hello @AnhNg6262 , thanks for your PR. Do you know if this PR will be merged soon? Thanks

@cmoreira-handtevy
Copy link

cmoreira-handtevy commented Apr 16, 2025

Any update on this PR?

@jetie000
Copy link

jetie000 commented Apr 16, 2025

@juandav Can you please have a look at this huge securiry problem

@Destroy666x
Copy link

Destroy666x commented May 20, 2025

Looks like the project is basically dead. @juandav is active on GH but 0 replies in this repo, it looks like. It's very unprofessional to abandon stuff completely like this, without even merging in security vulnerability fixes. At least pass it to someone interested, please.

@rlcDev
Copy link

rlcDev commented Jun 11, 2025
edited
Loading

The module keeps having +200k downloads a week and new vulnerabilities are spotted.
Please take the security concerns seriously

@stoberov
Copy link

stoberov commented Jun 19, 2025

@juandav - thank you for your library and the efforts so far! But any chance to at least reply if this will ever actually be considered to get merged? Or we should start looking for an alternative library / fork this one?

@Nirator78
Copy link

Nirator78 commented Jul 9, 2025

@juandav any date for merge of this pr please ?

@titouan-joseph
Copy link

titouan-joseph commented Dec 19, 2025

Hello @eduardoleal @cdiaz @juandav @kitimark

Please have a look at this PR
There are several vulnerabilities on the dependencies !

Thank you

@Nirator78
Copy link

Nirator78 commented Dec 22, 2025

Yes please, accept the pr :)

Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Reviewers

No reviews

Assignees

No one assigned

Labels

None yet

Projects

None yet

Milestone

No milestone

Development

Successfully merging this pull request may close these issues.

10 participants

@TakahashiNguyen @ricono-tyler @frantisekff @cmoreira-handtevy @jetie000 @Destroy666x @rlcDev @stoberov @Nirator78 @titouan-joseph