From 50dfa6d960ce45bba98cab352a61fac0ffd9c913 Mon Sep 17 00:00:00 2001
From: "Mark S. Lewis" <Mark.S.Lewis@outlook.com>
Date: Wed, 20 Mar 2024 12:52:19 +0000
Subject: [PATCH] Address false positive for CVE-2024-21484 (#186)

This vulnerability only relates to the Node implementation and impacts
RSA encryption, which is not used by Fabric.

Update to development versions of fabric-sdk-node packages where
dependencies have been updated only to avoid vulnerability scan
failures.

Signed-off-by: Mark S. Lewis <Mark.S.Lewis@outlook.com>
---
 node/admin/package.json | 4 ++--
 1 file changed, 2 insertions(+), 2 deletions(-)

diff --git a/node/admin/package.json b/node/admin/package.json
index 5dd80f8..ede2a67 100644
--- a/node/admin/package.json
+++ b/node/admin/package.json
@@ -14,8 +14,8 @@
     "test": "mocha test"
   },
   "dependencies": {
-    "fabric-ca-client": "latest",
-    "fabric-common": "latest",
+    "fabric-ca-client": "unstable",
+    "fabric-common": "unstable",
     "@hyperledger-twgc/fabric-formatter": "file:../formatter",
     "form-data": "latest",
     "@davidkhala/crypto": "latest"