-
Notifications
You must be signed in to change notification settings - Fork 3.5k
New issue
Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.
By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.
Already on GitHub? Sign in to your account
Please update to minimatch 3.0.2 or higher to avoid a RegExp DoS issue #1990
Comments
same issue faced |
Yeah I'm facing the same problem and I'm not using vue at all. |
Duplicate of #1984 |
I think this may have been erroneously marked as a duplicate when 9.15+ was having install issues. The package installs fine now (woot thanks!), but... 9.14.2 had no dependency deprecation warnings, whereas 9.15.5 when installed without any other packages reports:
This then results in |
Actually looks like this may be a duplicate-ish of #1369, sorry. It wasn't a big issue in the past as the build deps weren't shipped with the release, but that seems to have changed with 9.15.x. |
Can leave this open and close it when we actually deal with #1369. |
Fixed in 9.15.6 |
Thank you! @marcoscaceres |
As a bonus, we fixes all the outdated dependencies by forking gear and gear-lib :) We only have 1 low severity security warning 🎉 |
You guys worked very well, I will go ahead with highlight.js |
When installing this package via NPM, I get the following warnings and errors:
npm install highlight.js vue-highlight.js
This is not vue-highlight.js issue.
The text was updated successfully, but these errors were encountered: