Istanbul: Update `fileset` dependency per https://nodesecurity.io/advisories/118

Created on 24 Jun 2016  路  8Comments  路  Source: gotwarlost/istanbul

The minimatch NPM module has been patched due to a regular expression denial of service:

Once this is merged and a new release of fileset is released then a pull request can be created

Most helpful comment

I've not had time to take a look and it is not a simple update since one of the tests fail and I need to figure out why. Will get to it soon,

All 8 comments

Fileset 2.0.2 has now been released with this minimatch dependency update:

https://github.com/mklabs/node-fileset/compare/v1.0.1...v2.0.2

Any updates here?

Hi, is there any news on this?

Bump.

I've not had time to take a look and it is not a simple update since one of the tests fail and I need to figure out why. Will get to it soon,

+1

Looks, like there is an overall solution: #673

Was this page helpful?
0 / 5 - 0 ratings

Related issues

blindenvy picture blindenvy  路  19Comments

jasonpincin picture jasonpincin  路  22Comments

asciidisco picture asciidisco  路  47Comments

NiGhTTraX picture NiGhTTraX  路  36Comments

ouhouhsami picture ouhouhsami  路  16Comments