Hello, Our tool (NexusIQ) found 2 vulnerabilities from the dependencies used by @adobe/pdfservices-node-sdk : 3.2.0.move-file: 1.2.0 (recommendation is to upgrade to v2.1.0) - https://cwe.mitre.org/data/definitions/732.htmlcomponent-type: 1.2.1 (parent dependency validate: 4.5.1) - https://cwe.mitre.org/data/definitions/1333.html Our application is already in production and will block future deployments if not addressed because the pipeline will fail if it finds any vulnerability. Using the PublicAPI is our last option because it requires code refactoring. Please advise.

L

Lake281939537vpo

Participant

Question

Vulnerabilities found in pdfservices node sdk v3.2.0

Forum|Forum|2 years ago
February 20, 2023
0 replies
235 views

Hello,

Our tool (NexusIQ) found 2 vulnerabilities from the dependencies used by @adobe/pdfservices-node-sdk : 3.2.0.

move-file: 1.2.0 (recommendation is to upgrade to v2.1.0) - https://cwe.mitre.org/data/definitions/732.html
component-type: 1.2.1 (parent dependency validate: 4.5.1) - https://cwe.mitre.org/data/definitions/1333.html

Our application is already in production and will block future deployments if not addressed because the pipeline will fail if it finds any vulnerability. Using the PublicAPI is our last option because it requires code refactoring. Please advise.

This topic has been closed for replies.

Sign up

To post, reply, or follow discussions, please sign in with your Adobe ID.

Sign in to Adobe Community

To post, reply, or follow discussions, please sign in with your Adobe ID.

Scanning file for viruses.

This file cannot be downloaded