CVE-2022-0235: node-fetch forwards secure headers to untrusted sites.
There seems to be a vulnerability in the versions of node-fetch used in the latest version of the kepler SDK. Is there a plan to upgrade this package to include the fixes for this issue in a future version of the kepler SDK?
Hi @ctiradomor
Welcome to Amazon Developer Portal !
We are looking into your topic and will respond ASAP.
Warm regards,
Ivy
Hi @ctiradomor
Thank you for sending in this feature request. We will update it in one of the next public releases of the SDK. Please look out for future releases.
Warm regards,
Ivy