Skip to content

npm audit vulnerabilities #76

New issue
New issue
Open
Open
npm audit vulnerabilities#76
@marer

Description

@marer
marer
opened on Mar 29, 2023

Can you bump the deps?

                       === npm audit security report ===                        
                                                                                
┌──────────────────────────────────────────────────────────────────────────────┐
│                                Manual Review                                 │
│            Some vulnerabilities require your attention to resolve            │
│                                                                              │
│         Visit https://go.npm.me/audit-guide for additional guidance          │
└──────────────────────────────────────────────────────────────────────────────┘
┌───────────────┬──────────────────────────────────────────────────────────────┐
│ High          │ Inefficient Regular Expression Complexity in marked          │
├───────────────┼──────────────────────────────────────────────────────────────┤
│ Package       │ marked                                                       │
├───────────────┼──────────────────────────────────────────────────────────────┤
│ Patched in    │ >=4.0.10                                                     │
├───────────────┼──────────────────────────────────────────────────────────────┤
│ Dependency of │ markdown-styles [dev]                                        │
├───────────────┼──────────────────────────────────────────────────────────────┤
│ Path          │ markdown-styles > markdown-stream-utils > marked             │
├───────────────┼──────────────────────────────────────────────────────────────┤
│ More info     │ https://github.com/advisories/GHSA-5v2h-r2cx-5xgj            │
└───────────────┴──────────────────────────────────────────────────────────────┘

Metadata

Metadata

Assignees

No one assigned

    Labels

    No labels
    No labels

    Projects

    No projects

    Milestone

    No milestone

    Relationships

    None yet

    Development

    No branches or pull requests

    Issue actions