Remove react-cookie Due to Vulnerability and Replace with js-cookie
Unfortunately, we discovered a security vulnerability in react-cookie related to XSS on the same day it was installed. This PR removes react-cookie and replaces it with js-cookie to mitigate the issue and ensure secure handling of cookies.
Changes:
Removed react-cookie: The package was found to have an XSS vulnerability.
Rewrote Cookie Consent Component: Refactored the accept cookie consent component to use js-cookie for safer cookie management.
Why js-cookie?
js-cookie offers a lightweight and secure alternative for handling cookies in a straightforward manner.
The API is simple and well-suited for our current needs, eliminating the need for react-cookie.
Remove
react-cookieDue to Vulnerability and Replace withjs-cookieUnfortunately, we discovered a security vulnerability in
react-cookierelated to XSS on the same day it was installed. This PR removesreact-cookieand replaces it withjs-cookieto mitigate the issue and ensure secure handling of cookies.Changes:
react-cookie: The package was found to have an XSS vulnerability.js-cookiefor safer cookie management.Why
js-cookie?js-cookieoffers a lightweight and secure alternative for handling cookies in a straightforward manner.react-cookie.