Open Closed

synk Report/ Vulnerabilities within the modules #4070


User avatar
0
a3x created
  • ABP Framework version: vX.X.X
  • UI type: MVC
  • DB provider: EF Core
  • Tiered (MVC) or Identity Server Separated (Angular): yes

Hello,

in our company we run all projects through the well-known tool snyk.io to find vulnerabilities. Thereby we noticed some vulnerabilities, which come into the project through abp.io. To fix them we think it is important that you update the abp.io packages and provide a new version. Since abp.io is already used by many companies it would be good if you regularly use synk or a similar tool yourself and update the dependencies within your abp.io modules.

In the attachment some examples:


1 Answer(s)
  • User Avatar
    0
    alper created
    Support Team Director

    thanks you can track this issue https://github.com/abpframework/abp/issues/14811

Made with ❤️ on ABP v9.1.0-preview. Updated on November 11, 2024, 11:11