I use auditjs (https://www.npmjs.com/package/auditjs) in my CI build scripts.
This generates a vulnerability report for the package dependencies my project uses.
When the audit command is executed, it reports a warning.
My question is if btoa could be updated so that this audit warning could be eliminated.
Here is the output of auditjs:
------------------------------------------------------------
[565/1242] btoa 1.2.1 [VULNERABLE] 1 known vulnerabilities affecting installed version
CWE-125: Out-of-bounds Read
The software reads data past the end, or before the beginning, of the intended buffer.
ID: e391a58d-4a81-448b-8ffc-e19016807d73
Details: https://ossindex.sonatype.org/vuln/e391a58d-4a81-448b-8ffc-e19016807d73
Dependency path: /extract-loader/btoa
------------------------------------------------------------
Hello,
I use auditjs (https://www.npmjs.com/package/auditjs) in my CI build scripts.
This generates a vulnerability report for the package dependencies my project uses.
When the audit command is executed, it reports a warning.
My question is if btoa could be updated so that this audit warning could be eliminated.
Here is the output of auditjs:
```
------------------------------------------------------------
[565/1242] btoa 1.2.1 [VULNERABLE] 1 known vulnerabilities affecting installed version
CWE-125: Out-of-bounds Read
The software reads data past the end, or before the beginning, of the intended buffer.
ID: e391a58d-4a81-448b-8ffc-e19016807d73
Details: https://ossindex.sonatype.org/vuln/e391a58d-4a81-448b-8ffc-e19016807d73
Dependency path: /extract-loader/btoa
------------------------------------------------------------
```
Hello,
I use auditjs (https://www.npmjs.com/package/auditjs) in my CI build scripts.
This generates a vulnerability report for the package dependencies my project uses.
When the audit command is executed, it reports a warning.
My question is if btoa could be updated so that this audit warning could be eliminated.
Here is the output of auditjs: