Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

object-path high severity vulnerability #170

Closed
ChunxiAlexLuo opened this issue Oct 20, 2020 · 4 comments
Closed

object-path high severity vulnerability #170

ChunxiAlexLuo opened this issue Oct 20, 2020 · 4 comments

Comments

@ChunxiAlexLuo
Copy link

ChunxiAlexLuo commented Oct 20, 2020
edited
Loading

│ Path │ resolve-url-loader > adjust-sourcemap-loader > object-path │

https://www.npmjs.com/advisories/1573
@ChunxiAlexLuo
Copy link
Author

bholloway/adjust-sourcemap-loader#17

@suzuki-srj
Copy link

They will drop object-path package and release it.
bholloway/adjust-sourcemap-loader#17

@malkrad
Copy link

malkrad commented Oct 20, 2020

published in 3.0.0 bholloway/adjust-sourcemap-loader#16 (comment)

@iwantwin iwantwin mentioned this issue Oct 20, 2020
Merged
@kachkaev kachkaev mentioned this issue Oct 20, 2020
Closed
@alan-agius4 alan-agius4 mentioned this issue Oct 20, 2020
Closed
16 tasks
@bholloway
Copy link
Owner

Published resolve-url-loader@3.1.2

@malkrad malkrad mentioned this issue Oct 20, 2020
Closed
This was referenced Oct 20, 2020
Closed
Closed
@Khartir Khartir mentioned this issue Oct 21, 2020
Merged
This was referenced Oct 21, 2020
Closed
Closed
weaverryan added a commit to symfony/webpack-encore that referenced this issue Dec 2, 2020
@weaverryan
bug #848 Update resolve-url-loader to fix prototype pollution (Thomas…
83bc596 
… Gnandt)

This PR was merged into the main branch.

Discussion
----------

Update resolve-url-loader to fix prototype pollution

See bholloway/resolve-url-loader#170 and https://npmjs.com/advisories/1573

Commits
-------

d7717e1 update resolve-url-loader to fix prototype pollution
@emwalker emwalker mentioned this issue Feb 21, 2021
Closed
@sotten sotten mentioned this issue Apr 23, 2021
Merged
taylorotwell pushed a commit to laravel/ui that referenced this issue Apr 23, 2021
@sotten
Update dependencies (#203)
613e26d 
* Update Vue.php

Update dependencys
object-path high severity vulnerability
see: bholloway/resolve-url-loader#170

* Update React.php

dependencies

* Update Bootstrap.php

dependencies
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Assignees
No one assigned
Labels
None yet
Projects
None yet
Milestone
No milestone
Development

No branches or pull requests
4 participants
@bholloway @malkrad @ChunxiAlexLuo @suzuki-srj