OkHttp vulnerability issues in Socket.io client dependency
shivamsharma2710 opened this issue · 1 comments
shivamsharma2710 commented
Socket.IO Library has two vulnerabilities which are coming out from the internal OkHttp dependency. I've used the latest socket.io v2.1.0 which is using very old version 3.12.12 of OkHttp.
Following are the vulnerabilities:
Please give an estimate on when you're planning to fix these vulnerabilities?
PFA the complete vulnerability report,
shivamsharma2710 commented
@darrachequesne Please give an ETA when will be new release coming out with this fix?