Advisory Database
  • Advisories
  • Dependency Scanning
  1. npm
  2. ›
  3. event-stream
  4. ›
  5. GMS-2018-32

GMS-2018-32: Malicious package

October 20, 2018

The event-stream package contains a malicious dependency.

References

  • github.com/dominictarr/event-stream/issues/116

Detect and mitigate GMS-2018-32 with GitLab Dependency Scanning

Secure your software supply chain by verifying that all open source dependencies used in your projects contain no disclosed vulnerabilities. Learn more about Dependency Scanning →

Affected versions

Version 3.3.6

Fixed versions

  • 4.0.0

Solution

Upgrade to version 4.0.0.

Source file

npm/event-stream/GMS-2018-32.yml

Spotted a mistake? Edit the file on GitLab.

  • Site Repo
  • About GitLab
  • Terms
  • Privacy Statement
  • Contact

Page generated Thu, 21 Nov 2024 12:15:11 +0000.