High Vulnerability Issue of Dependency classgraph 4.8.60 #1259

dsubelman · 2024-07-23T18:34:26Z

The dependency classgraph version 4.8.60 has been reported to have a high-severity vulnerability.

References:

It appears that release 4.8.112 addresses and fixes this issue.

The text was updated successfully, but these errors were encountered:

dsubelman · 2024-09-01T19:09:43Z

Hi, have you been able to see this?

ccleva · 2024-11-26T13:15:07Z

Hi @dsubelman, I released a maintenance version with this fixed. Details are in this discussion #1261

benmccann · 2025-01-02T16:47:13Z

It looks like this was fixed awhile back and just never released. I'll cut a release of this project. No need to fork it

Line 109 in 7dd4097

Closing in favor of #1251

dsubelman · 2025-01-02T17:42:47Z

@benmccann thanks for the update. When are you planning to release the new version?

benmccann · 2025-01-02T17:54:29Z

Soon. Please follow #1251

Hopefully it will be today, but I need to check on some of the other PRs to try to get them in as well

dsubelman · 2025-01-02T19:46:58Z

@benmccann thanks again for the rapid response.

jtablesaw deleted a comment from frankwondon Jan 2, 2025

benmccann closed this as completed Jan 2, 2025

Provide feedback