You signed in with another tab or window. Reload to refresh your session.You signed out in another tab or window. Reload to refresh your session.You switched accounts on another tab or window. Reload to refresh your session.Dismiss alert
Due to a dependabot alert I’ve noticed that this package is using an older version of github.com/grpc-ecosystem/grpc-gateway resulting in usage of a vulnerable version of gopkg.in/yaml.v2 version v2.2.3, CVE-2019-11254. Did you have any plans to update to github.com/grpc-ecosystem/grpc-gateway/v2, addressing the security concern or otherwise?
The text was updated successfully, but these errors were encountered:
Due to a dependabot alert I’ve noticed that this package is using an older version of
github.com/grpc-ecosystem/grpc-gateway
resulting in usage of a vulnerable version ofgopkg.in/yaml.v2
versionv2.2.3
, CVE-2019-11254. Did you have any plans to update togithub.com/grpc-ecosystem/grpc-gateway/v2
, addressing the security concern or otherwise?The text was updated successfully, but these errors were encountered: