Extension version: Amazon Q 2.1.0
VS Code version: [your version]
OS: Windows
Description:
A vulnerability scanner has flagged the Node.js binary bundled with the Amazon Q
language server as vulnerable.
Path:
C:\Users[username]\AppData\Local\aws\toolkits\language-servers\AmazonQ\1.66.0\servers\node.exe
- Installed version: 24.9.0.0
- Fixed version: 24.13.0
The extension reports as up to date (v2.1.0) but the bundled Node binary has not
been updated. This appears to be coming from the @aws/language-server-runtimes
dependency.
Request:
Please update the bundled Node.js runtime to 24.13.0 or later.
Extension version: Amazon Q 2.1.0
VS Code version: [your version]
OS: Windows
Description:
A vulnerability scanner has flagged the Node.js binary bundled with the Amazon Q
language server as vulnerable.
Path:
C:\Users[username]\AppData\Local\aws\toolkits\language-servers\AmazonQ\1.66.0\servers\node.exe
The extension reports as up to date (v2.1.0) but the bundled Node binary has not
been updated. This appears to be coming from the @aws/language-server-runtimes
dependency.
Request:
Please update the bundled Node.js runtime to 24.13.0 or later.