wlaurance / src

Simple Redis Cache

Geek Repo:Geek Repo

Github PK Tool:Github PK Tool

Arbitrary Code Execution vulnerability in underline dependency

arusa opened this issue · comments

Hi,

the "src" lib has a dependency to "underscore" in version "~1.6.0" which has an Arbitrary Code Execution vulnerability according to:

https://www.npmjs.com/advisories/1674