search

miaolz123 / vue-markdown

A Powerful and Highspeed Markdown Parser for Vue
https://miaolz123.github.io/vue-markdown/
MIT License
1.89k stars 257 forks source link

Upgrade highlight.js #127

Open MichaelCurrin opened 3 years ago

MichaelCurrin commented 3 years ago

I get a security warning on my app because vue-markdown requires 9.X for highlight.js but the vulnerability is only fixed in 10.4.1

See below

Screen Shot 2020-12-10 at 11 51 59 am
milindsingh commented 3 years ago

I have updated the dependencies and you can install using npm i @adapttive/vue-markdown@4.0.1

Also, I am planning to maintain this package and have already merged most of the PR in my repository. Any contribution is welcomed to the new repository.

Please check https://github.com/adapttive/vue-markdown/ master: current version (with few fixes) next: updated dependencies and few features added.

Use: npm install @adapttive/vue-markdown

Migrating from vue-markdown 2.3:

{
  "dependencies": {
-  "vue-markdown": "^2.2.4
+  "vue-markdown": "npm:@adapttive/vue-markdown@^X.X.X"
  }
}

https://www.npmjs.com/package/@adapttive/vue-markdown