Governance compliance issue with Angular node-forge 0.10.0 version - need to fix this issue


Hi Team,


We have updated node-forge to latest Version i.e..,0.10.0 but still we are facing the same governance compliance issue :

(The package node-forge before 0.10.0 is vulnerable to Prototype Pollution via the util.setPath function. Note: Version 0.10.0 is a breaking change removing the vulnerable functions.),


Please let us know when we get latest version with fixes ready. 

Kindly provide your suggestion on this issue.




0 Replies