This repository was archived by the owner on Oct 12, 2023. It is now read-only.

nhooyr.io/websocket dependency should be updated to fix DOS vulnerability #260

Closed

afunix opened this issue Oct 22, 2021 · 1 comment

afunix commented Oct 22, 2021

nhooyr.io/websocket dependency is locked on version 1.8.6.
About half a year 1.8.7 has been released with vulnerability fix: https://github.com/nhooyr/websocket/releases/tag/v1.8.7
Please update the dependency.

jhendrixMSFT mentioned this issue

Update to latest go-amqp and websocket modules #267

Merged

Member

jhendrixMSFT commented Nov 16, 2021

Fixed in v0.11.4

jhendrixMSFT closed this as completed

Sign up for free to subscribe to this conversation on GitHub. Already have an account? Sign in.