Open hkernbach opened 4 years ago
@dciccale Any chance we can get someone to accept https://github.com/dciccale/grunt-processhtml/pull/122... Is this still supported? If not... a replacement recommended? Thanks.
@dciccale Any chance we can get someone to accept #122... Is this still supported? If not... a replacement recommended? Thanks.
@marcobiedermann ...
@june07
I'm sorry but I am not a maintainer of this project and therefore can not approve the changes. In general, the update looks good to me.
I guess @dciccale can help out
A new vulnerability was patched with #124
High Command Injection
Package lodash
Patched in >=4.17.21
Dependency of grunt-processhtml [dev]
Path grunt-processhtml > htmlprocessor > lodash
More info https://npmjs.com/advisories/1673
Lodash dependency needs to be raised, see:
High:
Low: