We have updated node-forge to latest Version i.e..,0.10.0 but still we are facing the same governance compliance issue :
(The package node-forge before 0.10.0 is vulnerable to Prototype Pollution via the util.setPath function. Note: Version 0.10.0 is a breaking change removing the vulnerable functions.),
Please let us know when we get latest version with fixes ready.
Kindly provide your suggestion on this issue.