Closed hstonec closed 2 months ago
follow-redirects is an indirect dependency and gets resolved to version < 1.15.4 which has vulnerability issue, so the PR explicitly sets the version to address that.
Yes
Download nvm / node as needed (tested on node JS 20, Mac OS)
nvm use 20 npm install -g yarn
Then, install the website:
cd website yarn
Last but not least, start the website on a local server, and browse it:
yarn start
It should work normally.
N/A
Motivation
follow-redirects is an indirect dependency and gets resolved to version < 1.15.4 which has vulnerability issue, so the PR explicitly sets the version to address that.
Have you read the Contributing Guidelines on pull requests?
Yes
Test Plan
Download nvm / node as needed (tested on node JS 20, Mac OS)
Then, install the website:
Last but not least, start the website on a local server, and browse it:
It should work normally.
Related Issues and PRs
N/A