breautek opened a new pull request, #1413:
URL: https://github.com/apache/cordova-android/pull/1413
Satisfy npm audit for the following issues:
# npm audit report
ansi-regex 4.0.0 - 4.1.0 || 5.0.0
Severity: moderate
Inefficient Regular Expression Complexity in chalk/ansi-regex -
https://github.com/advisories/GHSA-93q8-gq69-wqmw
Inefficient Regular Expression Complexity in chalk/ansi-regex -
https://github.com/advisories/GHSA-93q8-gq69-wqmw
fix available via `npm audit fix`
node_modules/ansi-regex
node_modules/strip-ansi/node_modules/ansi-regex
minimist <1.2.6
Severity: critical
Prototype Pollution in minimist -
https://github.com/advisories/GHSA-xvch-5gv4-984h
fix available via `npm audit fix`
node_modules/minimist
plist <=3.0.4
Severity: critical
Prototype pollution in Plist -
https://github.com/advisories/GHSA-4cpg-3vgw-4877
Depends on vulnerable versions of xmldom
fix available via `npm audit fix`
node_modules/plist
xmldom *
Severity: moderate
Misinterpretation of malicious XML input -
https://github.com/advisories/GHSA-5fg8-2547-mr8q
fix available via `npm audit fix`
node_modules/xmldom
plist <=3.0.4
Depends on vulnerable versions of xmldom
node_modules/plist
4 vulnerabilities (2 moderate, 2 critical)
--
This is an automated message from the Apache Git Service.
To respond to the message, please log on to GitHub and use the
URL above to go to the specific comment.
To unsubscribe, e-mail: [email protected]
For queries about this service, please contact Infrastructure at:
[email protected]
---------------------------------------------------------------------
To unsubscribe, e-mail: [email protected]
For additional commands, e-mail: [email protected]
