Latest version of prop-types is having vulenrability.Any idea that which safer version shall I switch to?

facebook / prop-types

Runtime type checking for React props and similar objects

MIT License

4.48k stars 356 forks source link

Latest version of prop-types is having vulenrability.Any idea that which safer version shall I switch to? #362

Closed akanksha2306 closed 2 years ago

akanksha2306 commented 2 years ago

Hi I am using the latest version of prop-types but its vulnerable.I was unable to find the information about non vulnerable version of this library.Any details or any idea about which is the safe version should I switch too?

ljharb commented 2 years ago

In what way is it vulnerable?

note that the vast majority of CVEs are false positives.

ljharb commented 2 years ago

Closing; there's no actual vulnerability I'm aware of.