-
-
Notifications
You must be signed in to change notification settings - Fork 1.6k
New issue
Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.
By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.
Already on GitHub? Sign in to your account
npm audit: DOM Clobbering Gadget found in rollup bundled scripts that leads to XSS #13758
Closed
3 tasks done
Labels
Package: nextjs
Issues related to the Sentry Nextjs SDK
Comments
mozeryansky
changed the title
npm audti: DOM Clobbering Gadget found in rollup bundled scripts that leads to XSS
npm audit: DOM Clobbering Gadget found in rollup bundled scripts that leads to XSS
Sep 24, 2024
github-actions
bot
added
the
Package: nextjs
Issues related to the Sentry Nextjs SDK
label
Sep 24, 2024
But "rollup" is a peer dependency in the plugins defined as: |
A PR closing this issue has just been released 🚀This issue was closed by PR #13761, which was included in the 8.32.0 release. |
Sign up for free
to join this conversation on GitHub.
Already have an account?
Sign in to comment
Is there an existing issue for this?
How do you use Sentry?
Sentry Saas (sentry.io)
Which SDK are you using?
@sentry/nextjs
SDK Version
8.31.0
Framework Version
No response
Link to Sentry event
No response
Reproduction Example/SDK Setup
When I run
npm audit
the suggestion is to download Sentry.Steps to Reproduce
npm i @sentry/nextjs@latest
npm audit
Expected Result
No security issues
Actual Result
The text was updated successfully, but these errors were encountered: