Bump `class-validator` to `0.14.0` to resolve CVE

`class-validator` has released [`0.14.0`](https://github.com/typestack/class-validator/blob/develop/CHANGELOG.md#0140-2022-12-09) as another patch to CVE-2019-18413 ([link](https://security.snyk.io/vuln/SNYK-JS-CLASSVALIDATOR-1730566)). This is related to https://github.com/javascript-obfuscator/javascript-obfuscator/issues/1019.

Even though we are already passing `forbidUnknownValues: true` ([link](https://github.com/javascript-obfuscator/javascript-obfuscator/commit/6abd6c2194336340a213e1b72196ae03fbb1eb9d)), auditing tools are still flagging `javascript-obfuscator` for having a vulnerable dependency.

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

Uh oh!

Bump `class-validator` to `0.14.0` to resolve CVE #1139

Metadata

Assignees

Labels

Type

Projects

Milestone

Relationships

Development

Uh oh!

Bump class-validator to 0.14.0 to resolve CVE #1139

Description

Metadata

Metadata

Assignees

Labels

Type

Projects

Milestone

Relationships

Development

Issue actions

Bump `class-validator` to `0.14.0` to resolve CVE #1139