webpack-dev-server 3.x depends on selfsigned 1.x, which depends on node-forge^0.10.0, which has security vulnerabilities.
See the fix for selfsigned: https://github.com/jfromaniello/selfsigned/issues/55
Need top bump the webpack-dev-server version to get the fixed version of selfsigned.
webpack-dev-server 3.x depends on selfsigned 1.x, which depends on node-forge^0.10.0, which has security vulnerabilities. See the fix for selfsigned: https://github.com/jfromaniello/selfsigned/issues/55 Need top bump the webpack-dev-server version to get the fixed version of selfsigned.