This repository was archived by the owner on Jun 1, 2026. It is now read-only.
v2.3.0
See yahoo#21
fix: update svgo to non-vulnerable version (older version relied on bad css-select -> css-what)
The vulnerability is described at https://snyk.io/vuln/SNYK-JS-CSSWHAT-1298035
Also: fixes problem with numeric entities for < and & not being permissible when they should be (needed to keep a test passing as well as being a proper fix)