Skip to content
  • Categories
  • Recent
  • Tags
  • Popular
Skins
  • Light
  • Brite
  • Cerulean
  • Cosmo
  • Flatly
  • Journal
  • Litera
  • Lumen
  • Lux
  • Materia
  • Minty
  • Morph
  • Pulse
  • Sandstone
  • Simplex
  • Sketchy
  • Spacelab
  • United
  • Yeti
  • Zephyr
  • Dark
  • Cyborg
  • Darkly
  • Quartz
  • Slate
  • Solar
  • Superhero
  • Vapor
  • Default (No Skin)
  • No Skin
Collapse
Brand Logo

Saillogger Community
  1. Home
  2. General Discussion
  3. npm audit report - issues reported in sailloger and windy plugins dependancies

npm audit report - issues reported in sailloger and windy plugins dependancies

Scheduled Pinned Locked Moved General Discussion
3 Posts 2 Posters 508 Views 1 Watching
  • Oldest to Newest
  • Newest to Oldest
  • Most Votes
Reply
  • Reply as topic
Log in to reply
This topic has been deleted. Only users with topic management privileges can see it.
  • P Offline
    P Offline
    piotr.pingo
    wrote on last edited by
    #1

    npm audit report

    form-data <2.5.4
    Severity: critical
    form-data uses unsafe random function in form-data for choosing boundary - https://github.com/advisories/GHSA-fjxv-7rqg-78g4
    No fix available
    node_modules/request/node_modules/form-data
    request *
    Depends on vulnerable versions of form-data
    Depends on vulnerable versions of tough-cookie
    node_modules/request

    signalk-saillogger  *
Depends on vulnerable versions of request
node_modules/signalk-saillogger
signalk-windy  *
    1 Reply Last reply
    0
    • adminA Offline
      adminA Offline
      admin
      wrote on last edited by
      #2

      @piotr-pingo we don't use either form-data and tough-cookie, these come as dependencies for some of the libraries but they are not used by Saillogger. This should have no impact to the plugin.

      1 Reply Last reply
      0
      • P Offline
        P Offline
        piotr.pingo
        wrote on last edited by
        #3

        ok thanks, just wanted to let you know as the warning was mentioning 2 your plugins. I will happy ignore it now

        1 Reply Last reply
        0

        Hello! It looks like you're interested in this conversation, but you don't have an account yet.

        Getting fed up of having to scroll through the same posts each visit? When you register for an account, you'll always come back to exactly where you were before, and choose to be notified of new replies (either via email, or push notification). You'll also be able to save bookmarks and upvote posts to show your appreciation to other community members.

        With your input, this post could be even better 💗

        Register Login
        Reply
        • Reply as topic
        Log in to reply
        • Oldest to Newest
        • Newest to Oldest
        • Most Votes

        Powered by NodeBB | Contributors
        • Login
        • Don't have an account? Register
        • Login or register to search.
        • First post
          Last post
        0
        • Categories
        • Recent
        • Tags
        • Popular