You signed in with another tab or window. Reload to refresh your session.You signed out in another tab or window. Reload to refresh your session.You switched accounts on another tab or window. Reload to refresh your session.Dismiss alert
I suspect this may be the same issue as #962
and #880
Because Fossa is required in CI, this blocks our CI for all PRs moving forward
The text was updated successfully, but these errors were encountered:
julielaursen
added
bug
Indicates an unexpected problem or unintended behavior
triage
This issue is yet to be triaged by a maintainer
labels
May 20, 2024
You should really build your CI systems to be resilient to such things. This is a development dependency, what's the actual risk? It's just security theatre.
There are ways to replace packages that are vulnerable using yarn, I'd suggest you do that for now as a workaround until the next release is out.
Software versions
Please provide at least OS and version of pact-js
Issue Checklist
Please confirm the following:
Expected behaviour
Pact should not cause issues in Fossa vulnerability scanning software
Actual behaviour
In our Fossa step in CI, we are getting this error
for version ramda (0.28.0)
When i run
yarn why ramda
I get:I suspect this may be the same issue as
#962
and #880
Because Fossa is required in CI, this blocks our CI for all PRs moving forward
The text was updated successfully, but these errors were encountered: