You signed in with another tab or window. Reload to refresh your session.You signed out in another tab or window. Reload to refresh your session.You switched accounts on another tab or window. Reload to refresh your session.Dismiss alert
Hello! Opened a blank issue since it's not a bug, but a vulnerability issue.
Current middy version depends on busboy@0.3.1 which has a vulnerable dependency (dicer): GHSA-wm7h-9275-46v2
Checked newer versions of the busboy package and since v1.0.0 that it does not have that dependency. Here is a list of breaking changes of v1: mscdex/busboy#266
Maybe someone with the understanding of how is this package is used can estimate the impact of upgrading it?
Thanks
The text was updated successfully, but these errors were encountered:
Hello! Opened a blank issue since it's not a bug, but a vulnerability issue.
Current middy version depends on
busboy@0.3.1
which has a vulnerable dependency (dicer
): GHSA-wm7h-9275-46v2Checked newer versions of the
busboy
package and sincev1.0.0
that it does not have that dependency. Here is a list of breaking changes of v1: mscdex/busboy#266Maybe someone with the understanding of how is this package is used can estimate the impact of upgrading it?
Thanks
The text was updated successfully, but these errors were encountered: