[
https://issues.apache.org/jira/browse/CB-10590?page=com.atlassian.jira.plugin.system.issuetabpanels:all-tabpanel
]
jcesarmobile closed CB-10590.
-----------------------------
Resolution: Won't Fix
Closing as cordova-weinre is being deprecated and no more work will be done
> Known security vulnerabilities in dependencies of current version of express:
> [email protected] and [email protected]
> ------------------------------------------------------------------------------------------------------
>
> Key: CB-10590
> URL: https://issues.apache.org/jira/browse/CB-10590
> Project: Apache Cordova
> Issue Type: Bug
> Components: cordova-weinre (DEPRECATED)
> Reporter: Spencer A Claxton
> Assignee: Patrick Mueller
> Priority: Major
> Labels: triaged
>
> There are known security vulnerabilities in dependencies of current version
> of express: [email protected] and [email protected]. See
> https://nodesecurity.io/advisories/qs_dos_extended_event_loop_blocking and
> https://nodesecurity.io/advisories/methodOverride_Middleware_Reflected_Cross-Site_Scripting
> for more detail. Can we bump express so that these vulnerabilities go away?
--
This message was sent by Atlassian JIRA
(v7.6.3#76005)
---------------------------------------------------------------------
To unsubscribe, e-mail: [email protected]
For additional commands, e-mail: [email protected]
