Skip to content
This repository has been archived by the owner on Jan 19, 2023. It is now read-only.

Bug: https://ossindex.sonatype.org/vuln/d96c07dd-81f9-41f6-b2bd-531143bcaeab #42

Closed
dallinskinner opened this issue Nov 1, 2019 · 2 comments
Closed

Bug: https://ossindex.sonatype.org/vuln/d96c07dd-81f9-41f6-b2bd-531143bcaeab #42

dallinskinner opened this issue Nov 1, 2019 · 2 comments
Labels
bug Something isn't working

Comments

@dallinskinner
Copy link

Vulnerability URL
https://ossindex.sonatype.org/vuln/d96c07dd-81f9-41f6-b2bd-531143bcaeab

Description
The vulnerability is flagging quill 1.3.7 for a problem that existed in 1.3.6 and was fixed in 1.3.7. The linked npm advisory says versions prior to 1.3.7 are affected. There are also links to both the issue and the resultant PR which you can see was merged and released.
@dallinskinner dallinskinner added the bug Something isn't working label Nov 1, 2019
@ken-duck
Copy link
Contributor

ken-duck commented Nov 4, 2019

This has been fixed in our research DB, and should be public by tomorrow. Thanks for the heads up! I also removed a duplicate finding of the same vulnerability at the same time.

@ken-duck
Copy link
Contributor

Cleaning things up: it looks like the data is correct now: https://ossindex.sonatype.org/vuln/d96c07dd-81f9-41f6-b2bd-531143bcaeab

Sign up for free to subscribe to this conversation on GitHub. Already have an account? Sign in.
Assignees
No one assigned
Labels
bug Something isn't working
Projects
None yet
Milestone
No milestone
Development

No branches or pull requests
2 participants
@dallinskinner @ken-duck