Levdbas
commented
2 years ago Hi @sindresorhus, would you mind taking this update in consideration and release a patched version of imagemin-jpegtran? Thank you for your time in advance!
Closed BigMichi1 closed 1 month ago
Levdbas
commented
2 years ago Hi @sindresorhus, would you mind taking this update in consideration and release a patched version of imagemin-jpegtran? Thank you for your time in advance!
fmagaldea
commented
2 years ago 👍 It would be great if any manager of this project could upgrade this dependency?
timmywil
commented
2 years ago upgrading jpegtran-bin to 6-7+ would also fix the security vulnerability.
rjimenezda
commented
1 month ago Any chance of this happening? Would you consider accepting PRs for this @sindresorhus ?
There are currently several vulnerabilities linkedi to several dependencies of this one and other imagemin plugins: gifsicle, svg and png.
pls bump version of jpegtran-bin to 6.0.0
see https://github.com/imagemin/jpegtran-bin/pull/101