[
https://issues.apache.org/jira/browse/AIRFLOW-6632?page=com.atlassian.jira.plugin.system.issuetabpanels:comment-tabpanel&focusedCommentId=17026191#comment-17026191
]
ASF subversion and git services commented on AIRFLOW-6632:
----------------------------------------------------------
Commit 6dc9d9fa51dd0757f8ed150ca9d22b9420dc268e in airflow's branch
refs/heads/master from Ry Walker
[ https://gitbox.apache.org/repos/asf?p=airflow.git;h=6dc9d9f ]
[AIRFLOW-6632] Bump dagre-d3 to resolve lodash CVE advisory
https://npmjs.com/advisories/577 (#7280)
> Resolve lodash advisory
> -----------------------
>
> Key: AIRFLOW-6632
> URL: https://issues.apache.org/jira/browse/AIRFLOW-6632
> Project: Apache Airflow
> Issue Type: Improvement
> Components: webserver
> Affects Versions: 1.10.7
> Reporter: Ry Walker
> Assignee: Ry Walker
> Priority: Major
> Fix For: 1.10.8
>
>
> https://npmjs.com/advisories/577
> Security scan turned up lodash 4.17.5 as a vulnerability per this NPM
> advisory - I've got PR to resolve.
--
This message was sent by Atlassian Jira
(v8.3.4#803005)
