New issue
Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.
By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.
Already on GitHub? Sign in to your account
Security vuln. in serialize-javascript via rollup-plugin-terser #2505
Comments
rollup-plugin-terser@5.1.3 was released 3 days ago: |
The current rollup-plugin-terser depends on serialize-javascript with a security vulnerability. This has been patched in version rollup-plugin-terser v5.1.3 Resolve jspm#2505
The current rollup-plugin-terser depends on serialize-javascript with a security vulnerability. This has been patched in version rollup-plugin-terser v5.1.3 Resolve jspm#2505
The current rollup-plugin-terser depends on serialize-javascript with a security vulnerability. This has been patched in version rollup-plugin-terser v5.1.3 Resolve jspm#2505
The current rollup-plugin-terser depends on serialize-javascript with a security vulnerability. This has been patched in version rollup-plugin-terser v5.1.3 Resolve jspm#2505
I created a PR in which the version of the plugin is updated: #2507 While doing that, I noticed that typescript wouldn't build the package due to 3 (small) errors, none of them are of any functional significance. I also noticed that the entire I don't know if this has any other affects, I assume that perhaps a |
NPM audit report:
Seems like rollup-plugin-terser already patched in master branch, but I don't believe that a version has been released yet:
TrySound/rollup-plugin-terser#57
The text was updated successfully, but these errors were encountered: