Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

security(npm): colors.js has embedded denial of service #79

Closed
DragonStuff opened this issue Jan 10, 2022 · 1 comment · Fixed by #82
Closed

security(npm): colors.js has embedded denial of service #79

DragonStuff opened this issue Jan 10, 2022 · 1 comment · Fixed by #82
Labels
released This issue/pull request has been released.

Comments

@DragonStuff
Copy link
Contributor

The maintainer has intentionally published a DoS in 1.4.1 and higher. It is recommended to lock to 1.4.0 and move to another package.
DragonStuff added a commit that referenced this issue Jan 10, 2022
@DragonStuff
security(npm): lock colors library to 1.4.0
058d763 
#79
@DragonStuff DragonStuff mentioned this issue Jan 10, 2022
Closed
DragonStuff added a commit that referenced this issue Jan 10, 2022
@DragonStuff
security(npm): lock colors library to 1.4.0
cf5da99 
#79
@DragonStuff DragonStuff mentioned this issue Jan 10, 2022
Closed
DragonStuff added a commit that referenced this issue Jan 10, 2022
@DragonStuff
security(tablecheck-icon): colors.js has embedded denial of service
9807b3a 
#79
@DragonStuff DragonStuff mentioned this issue Jan 10, 2022
Merged
@tablecheck-public-automation
Copy link
Collaborator

🚀 Issue was released in @tablecheck/tablekit-alert@3.1.0, @tablecheck/tablekit-avatar@2.1.0, @tablecheck/tablekit-badge@2.1.0, @tablecheck/tablekit-banner@2.1.0, @tablecheck/tablekit-button-group@2.1.0, @tablecheck/tablekit-button@2.1.0, @tablecheck/tablekit-calendar@3.1.0, @tablecheck/tablekit-checkbox@2.1.0, @tablecheck/tablekit-enzyme@2.1.0, @tablecheck/tablekit-free-icon-config@2.1.0, @tablecheck/tablekit-icon@2.1.0, @tablecheck/tablekit-inline-dialog@2.1.0, @tablecheck/tablekit-input-button@2.1.0, @tablecheck/tablekit-input@2.1.0, @tablecheck/tablekit-item@2.1.0, @tablecheck/tablekit-language-selector@2.1.0, @tablecheck/tablekit-logo@2.1.0, @tablecheck/tablekit-modal-dialog@3.1.0, @tablecheck/tablekit-package-namespace@1.1.0, @tablecheck/tablekit-panel@2.1.0, @tablecheck/tablekit-password-field@2.1.0, @tablecheck/tablekit-phone-input@3.1.0, @tablecheck/tablekit-pro-icon-config@2.1.0, @tablecheck/tablekit-radio@2.1.0, @tablecheck/tablekit-select@2.1.0, @tablecheck/tablekit-sidenav@2.1.0, @tablecheck/tablekit-spinner@2.1.0, @tablecheck/tablekit-table@2.1.0, @tablecheck/tablekit-tabs@2.1.0, @tablecheck/tablekit-tag@2.1.0, @tablecheck/tablekit-textarea@2.1.0, @tablecheck/tablekit-theme@2.1.0, @tablecheck/tablekit-toggle@2.1.0, @tablecheck/tablekit-tooltip@2.1.0, @tablecheck/tablekit-topnav@2.1.0, @tablecheck/tablekit-typography@2.1.0, @tablecheck/tablekit-utils@1.1.0 🚀

@tablecheck-public-automation tablecheck-public-automation added the released This issue/pull request has been released. label Jan 24, 2022
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Assignees
No one assigned
Labels
released This issue/pull request has been released.
Projects
None yet
Milestone
No milestone
2 participants
@DragonStuff @tablecheck-public-automation