Closed VitaliiShpital closed 1 year ago
nothing special here. I just cloned this repo to run some tests and realised that there is such an issue
This is a devDependency, installed only for running the tests, never present in projects, therefore there is no vulnerability in practice.
But updating mocha and retesting is a reasonable thing to do. Would you like to do that, test the result and submit a PR?
sure. Here you go! https://github.com/apostrophecms/sanitize-html/pull/611
To Reproduce
Step by step instructions to reproduce the behavior:
npm install
in this reponpm audit
in this repoExpected behavior
no deps vulnerability issues
Describe the bug
Details
node - 16.14.2