Please update the 'yaml' dependency version to 2.1.0 to fix CVE-2023-2251 Vulnerability #377
Labels
pinned
Issues that will not be automatically closed
Comments
|
hi @Prateeks91 can you send a pull request, please? |
|
This issue has been automatically marked as stale because it has not had recent activity. It will be closed if no further activity occurs. Thank you for your contributions. |
|
You should update your app to use yaml 2.2.2, or 2.3.0-5 at this point. This old yaml version appears to be a security vulnerability. Please don't ask me to make a pull request, this should be regular maintenance |
Sign up for free
to join this conversation on GitHub.
Already have an account?
Sign in to comment
Is your feature request related to a problem? Please describe.
Currently, the project is using yaml:2.0.0-1, which is prone to CVE-2023-2251 Vulnerability
Describe the solution you'd like
The suggested solution is to upgrade to yaml: 2.1.0
The text was updated successfully, but these errors were encountered: