Noticed a vulnerability with an outdated dependency when running a retire.js script, so have upgraded all dependencies. This may affect other users of this library, so have opened a PR from our Fork. I've manually tested this so can confirm no breaking changes, though feel free to test too.
RetireJS:
vue 1.0.25 has known vulnerabilities: severity: medium; summary: potential xss in ssr when using v-bind; https://github.com/vuejs/vue/releases/tag/v2.5.17 severity: medium; summary: possible xss vector ; https://github.com/vuejs/vue/releases/tag/v2.4.3
matiastucci
commented
4 years ago
Checklist
Description
Noticed a vulnerability with an outdated dependency when running a retire.js script, so have upgraded all dependencies. This may affect other users of this library, so have opened a PR from our Fork. I've manually tested this so can confirm no breaking changes, though feel free to test too.
Lmk if I missed anything 💪