Skip to content

Update xmldom to 0.7.2 - branch 3.x#633

Merged
cjbarth merged 1 commit into
node-saml:3.xfrom
forty:forty/update-xmldom
Aug 26, 2021
Merged

Update xmldom to 0.7.2 - branch 3.x#633
cjbarth merged 1 commit into
node-saml:3.xfrom
forty:forty/update-xmldom

Conversation

@forty

@forty forty commented Aug 24, 2021

Copy link
Copy Markdown
Contributor

The package is now scoped under @xmldom. See xmldom/xmldom#278
This fixes security vulnerability CVE-2021-32796.
Also update xml-crypto which depends on xmldom.

This is the same as node-saml/node-saml#17 for the 3.x branch which should be easier to release quickly.

@forty forty force-pushed the forty/update-xmldom branch from ca4435e to 46d2ff6 Compare August 25, 2021 12:31
@forty

forty commented Aug 25, 2021

Copy link
Copy Markdown
Contributor Author

Updated the PR to update xml-encryption as well, has they merged to xmldom update

The package is now scoped under @xmldom. See xmldom/xmldom#278
This fixes security vulnerability CVE-2021-32796.
Also update xml-crypto and xml-encryption which depends on xmldom.
@forty forty force-pushed the forty/update-xmldom branch from 46d2ff6 to dde4b72 Compare August 25, 2021 12:36
@christian-hawk

Copy link
Copy Markdown

any chance to get this merged/released?

@cjbarth cjbarth added bug dependencies Pull requests that update a dependency file labels Aug 26, 2021
@cjbarth cjbarth merged commit 9aef839 into node-saml:3.x Aug 26, 2021
@cjbarth

cjbarth commented Aug 26, 2021

Copy link
Copy Markdown
Collaborator

Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Labels

bug dependencies Pull requests that update a dependency file

Projects

None yet

Development

Successfully merging this pull request may close these issues.

4 participants