Skip to content
This repository has been archived by the owner on Feb 2, 2019. It is now read-only.

Commit

Permalink
Upgrade dependencies to mitigate CVE-2018-3728.
Browse files Browse the repository at this point in the history 
request depends on hoek. Hoek before 5.0.3 or 4.2.1 suffers from a known security vulnerability. See CVE-2018-3728. Upgrading request to 2.85.0 indirectly upgrades hoek to 4.2.1.

Also update client-oauth2, mocha and moment (unrelated to CVE-2018-3728) to their latest versions.
  • Loading branch information
@SydneyUni-Jim
SydneyUni-Jim authored Apr 28, 2018
2 parents 776e00c + 4025432 commit 3a8bf32
Show file tree
Hide file tree
Showing 3 changed files with 213 additions and 234 deletions.
2 changes: 1 addition & 1 deletion README.md
View file
Original file line number Diff line number Diff line change
Expand Up @@ -7,7 +7,7 @@ Simplifies access to the Sierra REST APIs from Node.js.
## How to use

```
npm install 'SydneyUniLibrary/sierra-api-as-promised#v0.4.0'
npm install 'SydneyUniLibrary/sierra-api-as-promised#v0.4.2'
```

Set up the following variables in process's environment.
Expand Down
Loading

0 comments on commit 3a8bf32

Please sign in to comment.