FoundKey/packages
Francis Dinh f30e02dc73
Some checks failed
ci/woodpecker/push/lint-backend Pipeline was successful
ci/woodpecker/push/build Pipeline was successful
ci/woodpecker/push/lint-client Pipeline failed
ci/woodpecker/pr/build Pipeline was successful
ci/woodpecker/pr/lint-backend Pipeline was successful
ci/woodpecker/pr/test Pipeline failed
ci/woodpecker/push/test Pipeline failed
ci/woodpecker/pr/lint-client Pipeline failed
security: update multer to 1.4.5-lts.1
This version of multer contains a fix for
CVE-2022-24434 which affects a transitive dependency.

> This affects all versions of package dicer. A malicious attacker can
> send a modified form to server, and crash the nodejs service. An
> attacker could sent the payload again and again so that the service
> continuously crashes.

Ref: https://nvd.nist.gov/vuln/detail/CVE-2022-24434
2022-08-18 01:37:39 -04:00
..
backend security: update multer to 1.4.5-lts.1 2022-08-18 01:37:39 -04:00
client enhance: add re-collapsing to quoted notes 2022-08-15 22:28:29 +02:00
shared client: fix some lints 2022-08-12 08:35:22 +02:00
sw remove --quiet flag from eslint 2022-08-04 00:20:59 +02:00
meta.json refactoring 2021-11-12 02:02:25 +09:00