Hi
I recently raised a PR to close a critical sec vuln in okta-oidc-middleware, a lodash CVE.
I’d like to get this merged, but it’s been sitting idle for almost a month. Is there something someone can help me with? Is there something I haven’t done correctly?
Our engineers are taking a look at this, see the new PR we made here: chore: Upgrades lodash by denysoblohin-okta · Pull Request #36 · okta/okta-oidc-middleware · GitHub. Looking to push a release soon, but you can track it via the GH issues either way.
This topic was automatically closed 24 hours after the last reply. New replies are no longer allowed.