Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

🤔 [ISSUE] - Packages vulnerabilities issue #754

Open
yassinedorbozgithub opened this issue Feb 14, 2025 · 2 comments · May be fixed by #757
Open

🤔 [ISSUE] - Packages vulnerabilities issue #754

yassinedorbozgithub opened this issue Feb 14, 2025 · 2 comments · May be fixed by #757
Assignees
@medtaher123 @yassinedorbozgithub
Labels
security Vulnerabilities, exploits, sensitive data

Comments

@yassinedorbozgithub
Copy link
Collaborator

Description

Description

We can notice that when we install Hexabot dependencies, we got messages mentioning vulnerabilities with multiple severity levels.

Image

Reproduction steps

1. Go to '...'
2. Click on '....'
3. Scroll down to '....'
4. See error

Logs



Browsers


No response


OS


No response

      		
    

      
  





        



            

              
            

        

      


      
    








      

    



      

  
            

    

      
    

    


      

          @yassinedorbozgithub
yassinedorbozgithub




          added
  the 

  enhancement

  New feature or request
 label


      Feb 14, 2025

    

  



    

    

      
    

    


      

          @yassinedorbozgithub
yassinedorbozgithub




        changed the title
🤔 [ISSUE] - Ppackages vulnerabilities issue

🤔 [ISSUE] - Packages vulnerabilities issue


      Feb 14, 2025

    

  



  

  

    
  


  

      

    @medtaher123
medtaher123



    linked a pull request
    
      Feb 14, 2025
    

    that will
    close
    this issue





  


  

      
   Open

  





  
  

      
        
      
      

  
    
    
  


    2 tasks
  





  









      

  
      



  

  @medtaher123





  


    

      

  

    

        
    
    

  


      
          
  
      
            Copy link

  

      
    

  


  

      

  
    Contributor


      

  


  

    

  





      


        


  
    

      
          
I fixed this issue in this PR: #757 . Let me know if any further changes are needed

      		
    

  





        


            

            

              
            

        

      


      

            
  

    
  
    
    

  

  



    












      

  
          

  

    
  


  

      

    @medtaher123
medtaher123



    mentioned this issue
    
      Feb 14, 2025
    





  


  

      
  
  Open

  







  









      

  
      



  

  @yassinedorbozgithub





  


    

      

  

    

        
    
    

  


      
          
  
      
            Copy link

  

      
    

  


  

      

  
    Collaborator


      

  Author


  


  

    

      

      
            yassinedorbozgithub
  

      

      

      commented


        Feb 15, 2025


      
  

  

    
      

        
          edited
          
        
        
      

    
    
      
        
      Loading

      
    
  



    


  





      


        


  
    

      
          
Hi @medtaher123, good work 🚀

To avoid having more than one developer working at the same time and for more visibility, please make sure the issue is assigned to you for any future issues

      		
    

  





        


            

            

              
            

        

      


      

            
  

    
  
    
    

  

  



    












      

  
            


    

    

      
    

    


      

          @yassinedorbozgithub
yassinedorbozgithub




            added
      

  security

  Vulnerabilities, exploits, sensitive data

    and removed
      

  enhancement

  New feature or request

  labels


      Feb 16, 2025

    

  



    











  
  

    

      

  





  




  
  

              

  
    Sign up for free
    to join this conversation on GitHub.
    Already have an account?
    Sign in to comment


  



  






  
                  




    

  


      
  

    Assignees
  



        

      

        

  
      @medtaher123
  
    medtaher123
    

      

      

        

  
      @yassinedorbozgithub
  
    yassinedorbozgithub
    

      








      


  


  

    Labels
  



    

      

    security

  Vulnerabilities, exploits, sensitive data








      

  

    

        

    Projects
  


        




    None yet




  



      


  

    
  

    Milestone
  


      No milestone





    
      
          


  

    

      
        

          
    

    Development
  




            
  
Successfully merging a pull request may close this issue.





    


  
          
      fix: execute npm audit fix

    
      medtaher123/Hexabot
    





      
    

  




      

    

  
      

  

    

      2 participants
    

    

        
          @medtaher123 
        
          @yassinedorbozgithub