Found high level security vulnerability for websocket-extensions in BlackDuck scans

[aakritidhawan]

While running BlackDuck scans for a project, found 1 High level security vulnerability for websocket-extensions version 0.1.4.
BlackDuck scan message-

There is no newer version available for websocket-extensions to fix this issue.

[jcoglan]

As you will see if you check the security advisories on this repository, this issue has already been fixed in this package: GHSA-g78m-2chm-r7qv.

The message you're seeing here is for the Ruby version of the package, which has also fixed the issue: GHSA-g6wq-qcwm-j5g2.

I've had another report of Black Duck reporting this issue against the wrong package, you should probably advise the vendor that their software is raising a warning incorrectly.