arborrow
commented
2 years ago Looks like the maintainers of cli-table3 have pinned colors to 1.4.0 so hopefully it will not be an issue - see commit https://github.com/cli-table/cli-table3/commit/9079383556b853f814c7c016a9a2b76aeedefa9c
I'm going to go ahead and close this issue since it doesn't look like any action in required in laravel-mix.
node -v): 16.13.1npm -v): 8.3.0Description:
https://www.bleepingcomputer.com/news/security/dev-corrupts-npm-libs-colors-and-faker-breaking-thousands-of-apps/
sail npm list colors html@ /var/www/html
-- laravel-mix@6.0.39-- cli-table3@0.6.0 `-- colors@1.4.0Steps To Reproduce:
I will also file an issue with cli-table3 but wanted folks using laravel-mix to be aware of this issue with colors. I'm not sure if it might be possible to lock in versions in laravel-mix dependencies to ensure that colors remains unaffected.