Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

Vulnerability in moment 2.18.1 #5130

Closed
ammy1999 opened this issue Jan 10, 2018 · 6 comments
Closed

Vulnerability in moment 2.18.1 #5130

ammy1999 opened this issue Jan 10, 2018 · 6 comments
Labels
type: support
Milestone
Version 2.7.2

Comments

@ammy1999
Copy link

Hello, I have a vulnerability in moment 2.18.1 when I use chartjs, So how can I suppress this vulnerability.
I scan my project(nodejs) with dependencyCheck plugin
@ammy1999
Copy link
Author

NSP reported a vulnerability in the moment library , So this version should be upgraded in the next version of chart.js

"dependencies": {
"chartjs-color": "~2.2.0",
"moment": "~2.18.0"
}

@manelpb
Copy link

manelpb commented Jan 10, 2018

+1 here's more details about this vulnerability: moment/moment#4163

@simonbrunel
Copy link
Member

This has been fixed by #4891 but not released yet

@ammy1999
Copy link
Author

Did anyone know about the next version please !!

@simonbrunel simonbrunel mentioned this issue Jan 29, 2018
Closed
@benmccann benmccann mentioned this issue Feb 7, 2018
Closed
@harryho
Copy link

harryho commented Mar 12, 2018

+1

@simonbrunel simonbrunel added this to the Version 2.7.2 milestone Mar 12, 2018
@simonbrunel
Copy link
Member

This should have been fixed in 2.7.2

Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Assignees
No one assigned
Labels
type: support
Projects
None yet
Milestone
Version 2.7.2
Development

No branches or pull requests
5 participants
@benmccann @manelpb @harryho @simonbrunel @ammy1999