Skip to content

Bump TypeORM from 0.2.45 to 0.3.20 #147

New issue
New issue
Open
Open
Bump TypeORM from 0.2.45 to 0.3.20#147
Assignees
JCantu248edujosemenacduhn17Matthew-Grayson
Labels
High PriorityHigh priority. Needs to be resolved ASAP even if it does not fit into a SprintbackenddependenciesPull requests that update a dependency filesecurityThis issue or pull request addresses a security issue
@Matthew-Grayson

Description

@Matthew-Grayson
Matthew-Grayson
opened on Apr 2, 2024

🐛 Summary

typeorm <0.3.0
Severity: critical
SQL injection in typeORM - GHSA-fx4w-v43j-vc45

Updating to version 0.3.20 is a breaking change that requires refactoring 109 instances of the findOne() method across 35 files.

Metadata

Metadata

Assignees

Labels

High PriorityHigh priority. Needs to be resolved ASAP even if it does not fit into a SprintbackenddependenciesPull requests that update a dependency filesecurityThis issue or pull request addresses a security issue

Type

No type

Projects

No projects

Milestone

No milestone

Relationships

None yet

Development

No branches or pull requests

Issue actions