search

airbnb / babel-plugin-inline-react-svg

A babel plugin that optimizes and inlines SVGs for your React Components.
MIT License
474 stars 92 forks source link

Update svgo to fix security issue #75

Closed surdu closed 4 years ago

surdu commented 4 years ago

There is a security issue in js-yaml that is used by svgo that was addressed in version 1.2.2 of svgo.

An update to svgo version >= 1.2.2 is needed to fix this issue.

ljharb commented 4 years ago

Duplicate of #45; tldr, it’s not actually an issue, and v1 can’t work for this package until it offers a synchronous method.