Skip to content

xml2js security issue for version 0.2.8 in azure-storage #741

Description

@saileerane

For latest features support, please switch to Azure Storage JavaScript SDK V10.

Which service(blob, file, queue, table) does this issue concern?

The issue is caused by the xml2js@0.2.8 version. This needs to be updated to xml2js@0.5.0 in azure-storage@2.10.7

Which version of the SDK was used?

azure-storage@2.10.7

What's the Node.js/Browser version?

node 18

What problem was encountered?

xml2js@0.2.8 introduces security vulnerabilities which can be fixed by upgrading to xml2js@0.5.0

Steps to reproduce the issue?

Install azure-storage@2.10.7 and check dependencies for xml2js

Have you found a mitigation/solution?

Upgrade xml2js to 0.5.0 version

Metadata

Metadata

Assignees

No one assigned

    Labels

    No labels
    No labels

    Type

    No type

    Fields

    No fields configured for issues without a type.

    Projects

    No projects

    Milestone

    No milestone

    Relationships

    None yet

    Development

    No branches or pull requests

    Issue actions