- ABP Framework version: vX.X.X
- UI type: MVC
- DB provider: EF Core
- Tiered (MVC) or Identity Server Separated (Angular): yes
in our company we run all projects through the well-known tool snyk.io to find vulnerabilities. Thereby we noticed some vulnerabilities, which come into the project through abp.io. To fix them we think it is important that you update the abp.io packages and provide a new version. Since abp.io is already used by many companies it would be good if you regularly use synk or a similar tool yourself and update the dependencies within your abp.io modules.
In the attachment some examples: