You signed in with another tab or window. Reload to refresh your session.You signed out in another tab or window. Reload to refresh your session.You switched accounts on another tab or window. Reload to refresh your session.Dismiss alert
The package serialise-javascript has seen a new security advisory, which requires libraries using it to update to a version beyond v3.1.0.
You can find the advisory here: GHSA-hxcc-f52p-wc94
react-styleguidist depends upon copy-webpack-plugin versions ^5.1.0, which in turn depends upon an older version of serialise-javascript, namely v2.12.0.
This can be fixed by changing the version of copy-webpack-plugin from ^5.1.0 to any of the latest versions, ideally ^6.0.3
It would be great to get this updated as its throwing off some warnings in a few places.
Happy to file a PR if needed.
The text was updated successfully, but these errors were encountered:
The package serialise-javascript has seen a new security advisory, which requires libraries using it to update to a version beyond v3.1.0.
You can find the advisory here: GHSA-hxcc-f52p-wc94
react-styleguidist depends upon copy-webpack-plugin versions ^5.1.0, which in turn depends upon an older version of serialise-javascript, namely v2.12.0.
This can be fixed by changing the version of copy-webpack-plugin from ^5.1.0 to any of the latest versions, ideally ^6.0.3
It would be great to get this updated as its throwing off some warnings in a few places.
Happy to file a PR if needed.
The text was updated successfully, but these errors were encountered: