type-graphql@0.12.2 vulnerabilities

Create GraphQL schema and resolvers with TypeScript, using classes and decorators!

  • latest version

    2.0.0-rc.2

  • latest non vulnerable version

  • first published

    6 years ago

  • latest version published

    6 months ago

  • licenses detected

  • Direct Vulnerabilities

    Known vulnerabilities in the type-graphql package. This does not include vulnerabilities belonging to this package’s dependencies.

    How to fix?

    Automatically find and fix vulnerabilities affecting your projects. Snyk scans for vulnerabilities and provides fixes for free.

    Fix for free
    VulnerabilityVulnerable Version
    • L
    Information Exposure

    type-graphql is a package to create GraphQL schema and resolvers with TypeScript, using classes and decorators!

    Affected versions of this package are vulnerable to Information Exposure. The package leaks the resolver source code in an error message. It is possible to force this error when no subscription topics are provided in the request.

    How to fix Information Exposure?

    Upgrade type-graphql to version 0.17.6 or higher.

    <0.17.6