Node.JS vulnerability - Update Node.JS to 18.20.1

Steps to reproduce

Please be aware of a vulnerability in the Node.JS version currently being used by Obsidian.

IMPORTANT! Update Node.JS to 18.20.1, 20.12.1, 21.7.2 or newer! - SVR.JS Blog

Node.js — Wednesday, April 3, 2024 Security Releases

Environment

SYSTEM INFO:
	Obsidian version: v1.5.11
	Installer version: v1.5.8

{
    "node": "18.18.2",
...
    "electron": "28.2.3",
}

Additional information

Obsidian is not using the HTTP server of Node.js (or any http server in that regard)
I don’t see how this could be abused.

Thank you for looking into it and confirming that Obsidian does not use any dependencies effected.

This topic was automatically closed 7 days after the last reply. New replies are no longer allowed.