Stuck on an issue?
Lightrun Answers was designed to reduce the constant googling that comes with debugging 3rd party libraries. It collects links to all the places you might be looking at while hunting down a tough bug.
And, if you’re still stuck at the end, we’re happy to hop on a call to see how we can help out.
Fix security issue caused by node-globule
See original GitHub issueWe have security issue in our project due to old version of lodash which node-globule has as a dependency.
Please look at the screenshot.
Please update lodash at least to the version 4.17.12 as node-globule is a transitive dependency of node-sass and it’s very critical
node-sass depends on gaze and gaze depends on node-globule
Issue Analytics
- State:
- Created 4 years ago
- Reactions:2
- Comments:5
Top Results From Across the Web
node-globule/package.json at master - GitHub
An easy-to-use wildcard globbing library. Contribute to cowboy/node-globule development by creating an account on GitHub.
Read more >Notice - Product documentation - NetApp
direct or indirect, to cause the direction or management of such entity, ... "Collective Work" means a work, such as a periodical issue, ......
Read more >Software Packages in "jammy", Subsection web - Ubuntu
JavaScript utility for merging multiple objects into one. libjs-microplugin.js (0.0.3+dfsg-1.1) [universe]: Lightweight plugin / dependency system for libraries ...
Read more >https://visualstudio.microsoft.com/wp-content/uplo...
Includes: Security (https://github.com/aspnet/Security) ... Extended WPF Toolkit – Community Edition (http://wpftoolkit.codeplex.com).
Read more >Copyright 2021 [IMS-IGA-VirtualAppliance : 14.4.1] Project tier: 3 ...
Oracle Database XE (Express Edition) 11g : Oracle Database 11 g Express Edition ... scaling fixes based on * https://github.com/stomita/ios-imagefile- ...
Read more >
Top Related Medium Post
No results found
Top Related StackOverflow Question
No results found
Troubleshoot Live Code
Lightrun enables developers to add logs, metrics and snapshots to live code - no restarts or redeploys required.
Start Free
Top Related Reddit Thread
No results found
Top Related Hackernoon Post
No results found
Top Related Tweet
No results found
Top Related Dev.to Post
No results found
Top Related Hashnode Post
No results found
Published 1.3.1 forcefully bumping lodash, make sure to properly update your lock files!
@vladikoff @cowboy any updates on when a
lodash4.17.12or higher will be included in release?Thank you in advance.