New issue
Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.
By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.
Already on GitHub? Sign in to your account
multiple vulnerabilities that exist in lodash.findlast #5832
Comments
In the same boat. They've been flagged by our security tools as Critical and we need to remediate. Any plans to address these? |
Any news on this issue? |
The Lodash documentation encourages people to stop using per-method packages like |
In our case, it is lodash.template and a sub-dependency of another package. That's why we can't do anything about it directly. |
Hi
I see multiple vulnerabilities that exist in lodash.findlast
in the latest version (4.6.0)
BDSA-2019-3842
BDSA-2020-3839
CVE-2020-8203 (BDSA-2020-1674)
CVE-2021-23337 (BDSA-2021-0392)
CVE-2019-10744 (BDSA-2019-2112)
When is it planned to attend these vulnerabilities
thank you!
The text was updated successfully, but these errors were encountered: