Swagger Package Vulnerability CVE-2021-46708 #995
Description
There is a vulnerability in swagger version 3 where swagger-ui-dist < v4.1.3 (CVE-2021-46708). Is there a way to modify plumber so it uses the latest version of swagger by default and avoids pulling in the vulnerable version.
I also brought this issue to swagger here where we were advised to bring this issue up with the plumber package.