NPM release to resolve security vulnerability #29
Comments
wmfgerrit
pushed a commit
to wikimedia/mediawiki-services-mobileapps
that referenced
this issue
Nov 21, 2019
With this change, all current potential vulnerabilities are resolved, except for one, which is blocked on the package maintainers publishing a new version with the fix.[1] Removed many `eslint-disable` directives which were rendered unnecessary and now cause lint warnings and errors due to eslint config changes. [1] less/less-plugin-clean-css#29 Change-Id: Ifc6cb7f0d590c02bfa0b1bf6f1b379a497b11daa
|
+1 |
|
Yes, please publish the latest version—I can't use this library because we need clean-css V4. |
|
Any news on this? |
|
Just FYI, we couldn't wait for this to be published and published in our org. See https://www.npmjs.com/package/@wikimedia/less-plugin-clean-css |
derTobsch
added a commit
to urlaubsverwaltung/urlaubsverwaltung
that referenced
this issue
Sep 29, 2023
Sign up for free
to join this conversation on GitHub.
Already have an account?
Sign in to comment
The version of the clean-css dependency has been updated to a safe version, but the version of less-plugin-clean-css on npm is outdated and doesn't have the fix. Could we release a new version on npm?
The text was updated successfully, but these errors were encountered: