Security Vulnerability: dependency portable-fetch is using outdated node-fetch 1.7.3
Closed this issue · 1 comments
phil-gratifypay commented
node-fetch version < 2.6.7 is vulnerable to Exposure of Sensitive Information to an Unauthorized Actor.
jackmahoney commented
Thank you for raising this. We have no replaced isomorphic fetch with cross fetch and removed security issues in release 15.10.0