Bump css-select to ^4.1.3 to resolve https://npmjs.com/advisories/1754 #127
Add this suggestion to a batch that can be applied as a single commit.
This suggestion is invalid because no changes were made to the code.
Suggestions cannot be applied while the pull request is closed.
Suggestions cannot be applied while viewing a subset of changes.
Only one suggestion per line can be applied in a batch.
Add this suggestion to a batch that can be applied as a single commit.
Applying suggestions on deleted lines is not supported.
You must change the existing code in this line in order to create a valid suggestion.
Outdated suggestions cannot be applied.
This suggestion has been applied or marked resolved.
Suggestions cannot be applied from pending reviews.
Suggestions cannot be applied on multi-line comments.
Suggestions cannot be applied while the pull request is queued to merge.
Suggestion cannot be applied right now. Please check back later.
css-what
which is a dependency ofcss-select
have a vulnerability is versions prior to 5.0.1.css-select
seem to have used ^5.0.0 ofcss-what
since version 4 (https://github.com/fb55/css-select/blob/v4.0.0/package.json#L25), so I bumped the dependency here to the latest ofcss-select
and all tests seem to pass so hopefully all is good.If anyone think of any more testing needed part from existing test passing, I'll be happy to assist.