Giters

sass / node-sass

:rainbow: Node.js bindings to libsass

Home Page:https://npmjs.org/package/node-sass

Geek Repo:Geek Repo

Github PK Tool:Github PK Tool

Security Vulnerability came in for yarn audit

im-hamza-dev opened this issue · comments

commented

Getting security Vulnerability of moderate level on request dependency of node-sass
I would like some guidance to resolve these vulnerability issues as I was getting high vulnerability issues in past on node-sass version 8.0.0 and 6.0.1 but currently getting this:

NODE VERSION: 16.13.1
NODE-SASS VERSION: 7.0.0

moderate │ Server-Side Request Forgery in Request │
├───────────────┼──────────────────────────────────────────────────────────────┤
│ Package │ request │
├───────────────┼──────────────────────────────────────────────────────────────┤
│ Patched in │ No patch available │
├───────────────┼──────────────────────────────────────────────────────────────┤
│ Dependency of │ node-sass │
├───────────────┼──────────────────────────────────────────────────────────────┤
│ Path │ node-sass > request │
├───────────────┼──────────────────────────────────────────────────────────────┤
│ More info │ https://www.npmjs.com/advisories/1091459