High Risk Security Issue Reported by Snyk #7358
Description
Node version: v20.10.0
Sails version (sails): 1.5.13
ORM hook version (sails-hook-orm): N/A
Sockets hook version (sails-hook-sockets): N/A
Organics hook version (sails-hook-organics): N/A
Grunt hook version (sails-hook-grunt): N/A
Uploads hook version (sails-hook-uploads): N/A
DB adapter & version (e.g. sails-mysql@5.55.5): N/A
Skipper adapter & version (e.g. skipper-s3@5.55.5): N/A
The dependency of sails-generate, cross-spawn 4.0.2 has a High Vulnerability in Snyk which is fixed in 7.0.5.
We are using the latest version sails 1.5.13 and detected the issue after scanning with Snyk.
Summary of the vulnerability can be found here:
https://security.snyk.io/package/npm/cross-spawn