Skip to content

Security issue for socket.io dependency #1850

Description

@KirilVandov

Issue details

There is a security issue with the current version of socket.io
https://www.npmjs.com/advisories/1609

The advisory from npm is to "Update to version 2.4.0 or later."

Steps to reproduce/test case

Simply npm install and you will get the security issue reported
https://www.npmjs.com/advisories/1609

Please specify which version of Browsersync, node and npm you're running

  • Browsersync [ X ]
  • Node [ ]
  • Npm [ ]

Affected platforms

  • linux
  • windows
  • OS X
  • freebsd
  • solaris
  • other (please specify which)

Metadata

Metadata

Assignees

No one assigned

    Labels

    No labels
    No labels

    Type

    No type

    Fields

    No fields configured for issues without a type.

    Projects

    No projects

    Milestone

    No milestone

    Relationships

    None yet

    Development

    No branches or pull requests

    Issue actions