search

decaporg / decap-cms

A Git-based CMS for Static Site Generators
https://decapcms.org
MIT License
17.95k stars 3.05k forks source link

8 high severity vulnerabilities #7295

Closed d3vma closed 1 month ago

d3vma commented 1 month ago

Describe the bug

To Reproduce

Screenshots

image

Applicable Versions:

CMS configuration

Additional context It's just outdated! Too many plugins needs a bump to higher versions and a proper maintenance. I've had a great experience with NetlifyCMS few years ago integrating it with GatsbyJS. Now I am trying to get it work with Astro but apparently pretty much not secure and imho it's unusable.

martinjagodic commented 1 month ago

We are aware of this and we are tracking it under #6513. Unfortunately, it's not very easy to update so many dependencies with breaking changes, so we ask for your patience or your help with contributing. Closing as duplicate.