Update 2.1.1 -> 2.1.2: serialize-javascript vulnerability found in …/minimo/package-lock.json

MunifTanjim / minimo

Minimo - Minimalist theme for Hugo

https://minimo.netlify.app

MIT License

545 stars 220 forks source link

Update 2.1.1 -> 2.1.2: serialize-javascript vulnerability found in …/minimo/package-lock.json #255

Closed cgpu closed 4 years ago

cgpu commented 4 years ago

Hi,

While checking the theme I had an alert from dependabot for a dependency when I submitted. Feel free to take a look and update the version after the patch.

I have attached the report as pdf below:

alerts-serialize.pdf

MunifTanjim commented 4 years ago

It's in devDependencies and does not affect the output.