-
-
Notifications
You must be signed in to change notification settings - Fork 4.8k
New issue
Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.
By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.
Already on GitHub? Sign in to your account
A known security vulnerabilities in your dependencies. #2919
Comments
Thanks for point this out. We don't think this vulnerability applies to Hexo, unless using it as a server. |
JLHwung
added a commit
that referenced
this issue
Jan 7, 2018
2 tasks
thom4parisot
pushed a commit
to thom4parisot/hexo
that referenced
this issue
Jan 17, 2020
Sign up for free
to join this conversation on GitHub.
Already have an account?
Sign in to comment
Environment Info
Node version(
node -v
):v9.2.0
Hexo and Plugin version(
npm ls --depth 0
):├── [email protected]
├── [email protected]
├── [email protected]
├── [email protected]
├── [email protected]
├── [email protected]
├── [email protected]
├── [email protected]
├── [email protected]
├── [email protected]
├── [email protected]
├── [email protected]
├── [email protected]
├── [email protected]
├── [email protected]
├── [email protected]
└── [email protected]
For BUG
package-lock.json
to the dependency.For question
hexo(3.4.3) --> swig(1.4.2) --> uglify-js(2.4.24)
For feature request
The text was updated successfully, but these errors were encountered: