Skip to content

Locked version of concurrently should be updated once patch is available #1248

Description

@NVedsted

The locked version of concurrently is vulnerable due to a transitive dependency on shell-code. The dependency should be bumped once they release the patch done in this PR.

Alternatively, it might be worthwhile considering loosening the version requirement (e.g., ^10.0.3) if that's acceptable.

Metadata

Metadata

Assignees

No one assigned

    Labels

    No labels
    No labels

    Type

    No type

    Fields

    No fields configured for issues without a type.

    Projects

    No projects

    Milestone

    No milestone

    Relationships

    None yet

    Development

    No branches or pull requests

    Issue actions