You signed in with another tab or window. Reload to refresh your session.You signed out in another tab or window. Reload to refresh your session.You switched accounts on another tab or window. Reload to refresh your session.Dismiss alert
The latest version of mcr.microsoft.com/cbl-mariner/base/nodejs:18 contains Fedramp vulnerability in npm dependencies on package 'tar' version 6.2.0 (CVE-2024-28863)
'tar' fixed the vulnerability with their 6.2.1 release.
The latest version of mcr.microsoft.com/cbl-mariner/base/nodejs:18 contains Fedramp vulnerability in npm dependencies on package 'tar' version 6.2.0 (CVE-2024-28863)
'tar' fixed the vulnerability with their 6.2.1 release.
npm fixed the vulnerability here: npm/cli@9ccff72
npm released the fixes in npm version 10.8.1
mcr.microsoft.com/cbl-mariner/base/nodejs 18 latest NPM version is 10.5.0 (still contains this vulnerability):
Expected behavior:
updated npm package with no Fedramp vulnerabilities.
The text was updated successfully, but these errors were encountered: