•  
      request #15125 Bump lodash to 4.17.49
    Infos
    #15125
    Thomas Gerbet (tgerbet)
    2020-07-17 09:59
    2020-07-16 18:26
    16392
    Details
    Bump lodash to 4.17.49
    A low level security issue has been identified: https://github.com/advisories/GHSA-p6mc-m468-83gw

    There is little to no risk in the context of Tuleap, to be exploitable is some ways it would require to zip objects with properties defined by users.
    Other
    All
    Empty
    • [ ] enhancement
    • [ ] internal improvement
    Empty
    Stage
    Thomas Gerbet (tgerbet)
    Closed
    2020-07-17
    Attachments
    Empty
    References

    Follow-ups