Closed jdhoffa closed 3 months ago
We were pinning some pretty old d3 dependencies, some of which had security vulnerabilities. https://github.com/RMI-PACTA/pacta-dashboard-svelte/security/dependabot/1
I tested locally, and it seems fine to bump to a more recent version of these dependencies (but do note that things break if we bump beyond V5 of j3...)
j3
We were pinning some pretty old d3 dependencies, some of which had security vulnerabilities. https://github.com/RMI-PACTA/pacta-dashboard-svelte/security/dependabot/1
I tested locally, and it seems fine to bump to a more recent version of these dependencies (but do note that things break if we bump beyond V5 of
j3...)