The version of redux in use here is using an old version of lodash-es which causes a security vulnerability
shusak opened this issue · 0 comments
shusak commented
Recent scans of this component have shown that the version of redux it depends on has a security vulnerability in the version lodash-es in use:
https://bugzilla.redhat.com/show_bug.cgi?id=CVE-2018-3721
Can this component move to redux 4.0.1? (or whatever latest is)