Hi Pablo,
Yes, our organization has done a risk assessment on the OpenSSL 3.0 vulnerability. Due to the version of Node.js that Local is running, Local nor its users were not exposed as a result of this issue.
Local is owned and maintained by WP Engine, a hosting provider. The WP Engine team reviewed the hosting platform and also found no vulnerabilities, issuing this statement:
“WP Engine Security has reviewed the OpenSSL vulnerabilities announced on 11/01/2022 and has confirmed with Engineering that none of our systems are affected.”
Thanks for asking!
-Austin