ansi-regex is being flagged as a HIGH severity vulnerability in CVE-2021-3807. I traced it back from eslint to ajv back to this package and found that in the yarn.lock the versions are indeed behind. Fix versions include 3.0.1, 4.1.1, 5.0.1, 6.0.1. Hope that makes sense, but let me know if I can elaborate at all. Thanks
ansi-regex is being flagged as a HIGH severity vulnerability in CVE-2021-3807. I traced it back from eslint to ajv back to this package and found that in the yarn.lock the versions are indeed behind. Fix versions include 3.0.1, 4.1.1, 5.0.1, 6.0.1. Hope that makes sense, but let me know if I can elaborate at all. Thanks