[GH-ISSUE #9] npm audit high severity vulnerability #7

New issue

Closed

opened 2026-02-28 14:18:27 +03:00 by kerem · 1 comment

kerem commented 2026-02-28 14:18:27 +03:00

Owner

Copy link

Originally created by @swan11jf on GitHub (May 15, 2020).
Original GitHub issue: https://github.com/AnanthVivekanand/spotify-adblock/issues/9

Denial of Service is shown as a high vulnerability

Originally created by @swan11jf on GitHub (May 15, 2020). Original GitHub issue: https://github.com/AnanthVivekanand/spotify-adblock/issues/9 Denial of Service is shown as a high vulnerability

kerem closed this issue 2026-02-28 14:18:28 +03:00

kerem commented 2026-02-28 14:18:28 +03:00

Author

Owner

Copy link

@AnanthVivekanand commented on GitHub (May 15, 2020):

There's nothing that can be done about this right now since the issue is with http-proxy and affects all versions of it. We can't change anything on our side except change the proxy library, which is very time-consuming and isn't worth it right now.

Even then, the issue isn't very severe since most users will not be exposing the proxy to the outside world. Since most users will be using this on localhost or on their own closed network, no malicious actors should be able to actual perform a DoS (unless they happen to be on the network).

<!-- gh-comment-id:629401342 --> @AnanthVivekanand commented on GitHub (May 15, 2020): There's nothing that can be done about this right now since the issue is with `http-proxy` and affects **all** versions of it. We can't change anything on our side except change the proxy library, which is very time-consuming and isn't worth it right now. Even then, the issue isn't very severe since most users will not be exposing the proxy to the outside world. Since most users will be using this on localhost or on their own closed network, no malicious actors should be able to actual perform a DoS (unless they happen to be on the network).

kerem referenced this issue 2026-02-28 14:18:50 +03:00

[PR #7] [CLOSED] Add login server to whitelist (Fixes #3) #57

kerem referenced this issue 2026-03-01 17:43:24 +03:00

[GH-ISSUE #3] can't play music #157

kerem referenced this issue 2026-03-01 17:43:24 +03:00

[GH-ISSUE #3] can't play music #157

kerem referenced this issue 2026-03-01 17:43:46 +03:00

[PR #7] [CLOSED] Add login server to whitelist (Fixes #3) #194

kerem referenced this issue 2026-03-14 08:09:46 +03:00

[GH-ISSUE #3] can't play music #293

kerem referenced this issue 2026-03-14 08:09:51 +03:00

[GH-ISSUE #3] can't play music #293

kerem referenced this issue 2026-03-14 08:20:44 +03:00

[PR #7] [CLOSED] Add login server to whitelist (Fixes #3) #334

Sign in to join this conversation.

No Branch/Tag specified

Branches Tags

master

ts-refactor

dependabot/npm_and_yarn/minimist-and-http-mitm-proxy--removed

dependabot/npm_and_yarn/lodash-4.17.21

recommend-mitm

fix-70

dependabot/npm_and_yarn/async-2.6.4

dependabot/npm_and_yarn/follow-redirects-1.14.8

greyed-out-fix

mitm-proxy

No results found.

Labels

Clear labels   

cannot reproduce

  

pull-request

Mirrored from GitHub Pull Request

No labels

cannot reproduce

pull-request

Milestone

Clear milestone

No items

No milestone

Projects

Clear projects

No items

No project

Assignees

Clear assignees

No assignees

1 participant

Notifications

Subscribe

Due date

The due date is invalid or out of range. Please use the format "yyyy-mm-dd".

No due date set.

Dependencies

No dependencies set.

Reference

starred/spotify-adblock#7

No description provided.