js-yaml had a vulnerability and and it is a dependency for svgo package. The maintainers of svgo have updated the dependency to 3.13.1 (https://github.com/svg/svgo/releases/tag/v1.2.2).
But font-blast has a specific version opf svgo as a dependency, it should be updated so the version without vulnerability is downloaded instead.
js-yaml had a vulnerability and and it is a dependency for svgo package. The maintainers of svgo have updated the dependency to 3.13.1 (https://github.com/svg/svgo/releases/tag/v1.2.2). But font-blast has a specific version opf svgo as a dependency, it should be updated so the version without vulnerability is downloaded instead.