Open grenade opened 6 years ago
google-cdn 1.0.0 has a dependency on an older version of bower which in turn has a dependency on an older version of handlebars which contains a security vulnerability (https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-8861).
This would be most welcome! :)
What is the status on this update @grenade @leadegroot? I have not seen any version changes to the npm directory for this package.
google-cdn 1.0.0 has a dependency on an older version of bower which in turn has a dependency on an older version of handlebars which contains a security vulnerability (https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-8861).