Closed brandonchinn178 closed 3 years ago
This pull request is being automatically deployed with Vercel (learn more).
To see the status of your deployment, click below or on the icon next to each commit.
🔍 Inspect: https://vercel.com/brandonchinn178/worship-mate/GAqquhhHwY2af16keg6F1mUB4hrR
✅ Preview: Canceled
[Deployment for e7de40d canceled]
Merging #529 (e7de40d) into main (745ef0d) will not change coverage. The diff coverage is
n/a
.
@@ Coverage Diff @@
## main #529 +/- ##
=======================================
Coverage 93.79% 93.79%
=======================================
Files 25 25
Lines 274 274
Branches 32 32
=======================================
Hits 257 257
Misses 10 10
Partials 7 7
Continue to review full report at Codecov.
Legend - Click here to learn more
Δ = absolute <relative> (impact)
,ø = not affected
,? = missing data
Powered by Codecov. Last update 745ef0d...e7de40d. Read the comment docs.
ssri
has a vulnerability:We use this in two places: storybook and next, both of which had
webpack
as a dependency which transitively usesssri
. Turns out NextJS removed the webpack dependency, which means it pulls from the version ofwebpack
we install. We install webpack 5.28, which usesterser-webpack-plugin
5.1.1, which doesn't seem to usecacache
anymore, which is howssri
was being pulled in.So now,
ssri
is only pulled in withstorybook
, which is only for dev