Please update the 'yaml' dependency version to 2.1.0 to fix CVE-2023-2251 Vulnerability

Question

Please update the 'yaml' dependency version to 2.1.0 to fix CVE-2023-2251 Vulnerability

Prateeks91 opened this issue a year ago · 3 comments

Is your feature request related to a problem? Please describe.
Currently, the project is using yaml:2.0.0-1, which is prone to CVE-2023-2251 Vulnerability

Describe the solution you'd like
The suggested solution is to upgrade to yaml: 2.1.0

Answer 1 · 2023-08-23T15:53:16.000Z

hi @Prateeks91 can you send a pull request, please?

Answer 2 · 2023-08-23T18:26:51.000Z

@daniloab sure. Here you go #378

Answer 3 · 2023-10-23T01:01:12.000Z

This issue has been automatically marked as stale because it has not had recent activity. It will be closed if no further activity occurs. Thank you for your contributions.