[BUG] Upgrade transitive dependency "hosted-git-info@2.8.8" to fix CVE-2021-23362

# What / Why

While scanning my project with [auditjs](https://github.com/sonatype-nexus-community/auditjs), I discovered `read-installed` has a transitive dependency on `hosted-git-info@2.8.8` which has vulnerability [CVE-2021-23362](http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2021-23362).

```shell
$ npm ls hosted-git-info
  auditjs@4.0.25 /Users/bhamail/sonatype/community/auditjs/auditjs
  └─┬ read-installed@4.0.3
    └─┬ read-package-json@2.1.2
      └─┬ normalize-package-data@2.5.0
        └── hosted-git-info@2.8.8
```

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

[BUG] Upgrade transitive dependency "hosted-git-info@2.8.8" to fix CVE-2021-23362 #53

What / Why

Metadata

Assignees

Labels

Type

Projects

Milestone

Relationships

Development

[BUG] Upgrade transitive dependency "hosted-git-info@2.8.8" to fix CVE-2021-23362 #53

Description

What / Why

Metadata

Metadata

Assignees

Labels

Type

Projects

Milestone

Relationships

Development

Issue actions