BUG
Synk.io is reporting Vulnerability for this library, One of the dependence library saml@1.0.0 uses xmldom which has Vulnerability.
and also Arbitrary Code Injection from package ejs@3.1.6
Solution: update dependence library saml@1.0.0 to 1.0.1 which is using the latest version of xmldom@0.7.4 and also update ejs@2.5.5 to ejs@3.1.6
BUG
Synk.io is reporting Vulnerability for this library, One of the dependence library
saml@1.0.0usesxmldomwhich has Vulnerability.and also
Arbitrary Code Injectionfrom packageejs@3.1.6Solution: update dependence library
saml@1.0.0to1.0.1which is using the latest version ofxmldom@0.7.4and also updateejs@2.5.5toejs@3.1.6