Resolve vulnerability: Improper Input Validation in minimist (!3127) · Merge requests · GitLab.org / GitLab · GitLab

Do not update/delete: Banner broadcast message test data

Do not update/delete: Notification broadcast message test data

GitLab Security Bot requested to merge remediate/improper-input-validation-in-minimist-D20210806T032450 into master Aug 06, 2021

Description:

minimist could be tricked into adding or modifying properties of Object.prototype using a constructor or __proto__ payload.

Severity: medium
Confidence: unknown
Location: yarn.lock

Solution:

Upgrade to version 1.2.2 or above.

Identifiers:

Links:

https://nvd.nist.gov/vuln/detail/CVE-2020-7598