The Node Security project released an advisory yesterday about the negotiator package, a dependency of Sails, Express, Socket.io, and Connect.

  • socket.io
  • engine.io
  • accepts
  • serve-index
  • compression
  • and more

--

--

--

We make Sails work and things work with Sails.

Love podcasts or audiobooks? Learn on the go with our new app.

Get the Medium app

A button that says 'Download on the App Store', and if clicked it will lead you to the iOS App store
A button that says 'Get it on, Google Play', and if clicked it will lead you to the Google Play store
Sails

Sails

We make Sails work and things work with Sails.

More from Medium

3 steps to solve rails 7 app using Tailwind having Heroku error: We’re sorry, but something went…

Solve UK time changes (DST) with NodeJS and date-fns and Docker (epoch/unix format)

Hosting NodeJs Apps on Your Own Heroku, Using Dokku

Add Login Sessions to the state