Open Closed

synk Report/ Vulnerabilities within the modules #4070


0
a3x created
  • ABP Framework version: vX.X.X
  • UI type: MVC
  • DB provider: EF Core
  • Tiered (MVC) or Identity Server Separated (Angular): yes

Hello,

in our company we run all projects through the well-known tool snyk.io to find vulnerabilities. Thereby we noticed some vulnerabilities, which come into the project through abp.io. To fix them we think it is important that you update the abp.io packages and provide a new version. Since abp.io is already used by many companies it would be good if you regularly use synk or a similar tool yourself and update the dependencies within your abp.io modules.

In the attachment some examples:


1 Answer(s)
  • 0
    alper created
    Support Team

    thanks you can track this issue https://github.com/abpframework/abp/issues/14811