privilegedescalation/headlamp-kube-vip-plugin

Archived

fix: override lodash >=4.18.0 to patch code injection vulnerability #40

Merged

privilegedescalation-engineer[bot] merged 2 commits from fix/lodash-cve-ghsa-r5fr-rjxr-66jc into main

2026-05-03 23:24:52 +00:00

1 changed files with 2 additions and 1 deletions

Showing only changes of commit a7daabe4a0 - Show all commits

									
										package.json
									
		+2
		-1
	
												View File
												
				@@ -31,7 +31,8 @@

				  },

				  "overrides": {

				    "tar": "^7.5.11",

				    "undici": "^7.24.3"

				    "undici": "^7.24.3",

				    "lodash": ">=4.18.0"

				  },

				  "devDependencies": {

				    "@headlamp-k8s/eslint-config": "^0.6.0",