Upgrade ssri due to security vulnerability

Question

Upgrade ssri due to security vulnerability

hulkish opened this issue 6 years ago · comments

Kat Marchán · Answer 1 · Thu Mar 01 2018 03:04:25 GMT+0800 (China Standard Time)

wanna send me a PR for this?

I wanna note, for the record: This security issue DOES NOT affect cacache in any way. cacache does not use ssri's strict-mode, so it never hits that regex, so there's no rush to this. :)

nothingismagick · Answer 2 · Mon May 28 2018 08:13:33 GMT+0800 (China Standard Time)

Looks like this has been resolved.
208b7bd#diff-b9cfc7f2cdf78a7f4b91a753d10865a2