Open JeroenRoodIHS opened 1 year ago
For dependency @lovell/sharp, a vulnerability was found: https://github.com/advisories/GHSA-gp95-ppv5-3jc5
The vulnerability concerned Command Injection in post-installation over build environment. This was fixed in version v0.30.5
Updating Sharp to v0.30.5 should remove the vulnerability, or at least, that's what it says on the tin.
Hi @JeroenRoodIHS , thanks for open the Issue.
Mind creating a PR? Thanks!
For dependency @lovell/sharp, a vulnerability was found: https://github.com/advisories/GHSA-gp95-ppv5-3jc5
The vulnerability concerned Command Injection in post-installation over build environment. This was fixed in version v0.30.5
Updating Sharp to v0.30.5 should remove the vulnerability, or at least, that's what it says on the tin.