You signed in with another tab or window. Reload to refresh your session.You signed out in another tab or window. Reload to refresh your session.You switched accounts on another tab or window. Reload to refresh your session.Dismiss alert
Issues to fix by upgrading:
Upgrade axios@1.6.0 to axios@1.6.3 to fix
✗ Regular Expression Denial of Service (ReDoS) (new) [Medium Severity][https://security.snyk.io/vuln/SNYK-JS-AXIOS-6124857] in axios@1.6.0
introduced by axios@1.6.0 and 1 other path(s)
Issues with no direct upgrade or patch:
✗ Improper Input Validation [High Severity][https://security.snyk.io/vuln/SNYK-JS-FOLLOWREDIRECTS-6141137] in follow-redirects@1.15.2
introduced by axios@1.6.0 > follow-redirects@1.15.2 and 1 other path(s)
This issue was fixed in versions: 1.15.4
Technical details:
twilio-node version: 4.20.0
node version: 18.16.0
The text was updated successfully, but these errors were encountered:
Issue Summary
The library uses axios 1.6.0 which has a vulnerable dependency with follow-redirects < 1.15.4
https://security.snyk.io/vuln/SNYK-JS-FOLLOWREDIRECTS-6141137
See related PRs on axios:
axios/axios#6164
axios/axios#6166
Steps to Reproduce
Code Snippet
snyk test --all-projects
Exception/Log
Technical details:
The text was updated successfully, but these errors were encountered: