You signed in with another tab or window. Reload to refresh your session.You signed out in another tab or window. Reload to refresh your session.You switched accounts on another tab or window. Reload to refresh your session.Dismiss alert
Manually update elliptic to v6.5.7 for security update
Use `npm audit fix` to update one dependency in the lock.
elliptic v2.0.0 - 6.5.6 affected:
- Elliptic's ECDSA missing check for whether leading bit of r and s is zero - GHSA-977x-g7h5-7qgw
- Elliptic's EDDSA missing signature length check - GHSA-f7q4-pwc6-w24p
- Elliptic allows BER-encoded signatures - GHSA-49q7-c7j4-3p7m
0 commit comments