search

ragaeeb / das-js

Dar As Sahaba website
MIT License
3 stars 1 forks source link

npm audit found vulnerabilities #622

Closed github-actions[bot] closed 1 year ago

github-actions[bot] commented 2 years ago 
=== npm audit security report ===                        

┌──────────────────────────────────────────────────────────────────────────────┐
│                                Manual Review                                 │
│            Some vulnerabilities require your attention to resolve            │
│                                                                              │
│         Visit https://go.npm.me/audit-guide for additional guidance          │
└──────────────────────────────────────────────────────────────────────────────┘
┌───────────────┬──────────────────────────────────────────────────────────────┐
│ Moderate      │  Inefficient Regular Expression Complexity in                │
│               │ chalk/ansi-regex                                             │
├───────────────┼──────────────────────────────────────────────────────────────┤
│ Package       │ ansi-regex                                                   │
├───────────────┼──────────────────────────────────────────────────────────────┤
│ Patched in    │ >=5.0.1                                                      │
├───────────────┼──────────────────────────────────────────────────────────────┤
│ Dependency of │ gatsby-cli                                                   │
├───────────────┼──────────────────────────────────────────────────────────────┤
│ Path          │ gatsby-cli > strip-ansi > ansi-regex                         │
├───────────────┼──────────────────────────────────────────────────────────────┤
│ More info     │ https://github.com/advisories/GHSA-93q8-gq69-wqmw            │
└───────────────┴──────────────────────────────────────────────────────────────┘
┌───────────────┬──────────────────────────────────────────────────────────────┐
│ Moderate      │  Inefficient Regular Expression Complexity in                │
│               │ chalk/ansi-regex                                             │
├───────────────┼──────────────────────────────────────────────────────────────┤
│ Package       │ ansi-regex                                                   │
├───────────────┼──────────────────────────────────────────────────────────────┤
│ Patched in    │ >=5.0.1                                                      │
├───────────────┼──────────────────────────────────────────────────────────────┤
│ Dependency of │ gatsby                                                       │
├───────────────┼──────────────────────────────────────────────────────────────┤
│ Path          │ gatsby > gatsby-cli > strip-ansi > ansi-regex                │
├───────────────┼──────────────────────────────────────────────────────────────┤
│ More info     │ https://github.com/advisories/GHSA-93q8-gq69-wqmw            │
└───────────────┴──────────────────────────────────────────────────────────────┘
┌───────────────┬──────────────────────────────────────────────────────────────┐
│ Moderate      │  Inefficient Regular Expression Complexity in                │
│               │ chalk/ansi-regex                                             │
├───────────────┼──────────────────────────────────────────────────────────────┤
│ Package       │ ansi-regex                                                   │
├───────────────┼──────────────────────────────────────────────────────────────┤
│ Patched in    │ >=5.0.1                                                      │
├───────────────┼──────────────────────────────────────────────────────────────┤
│ Dependency of │ gatsby-cli                                                   │
├───────────────┼──────────────────────────────────────────────────────────────┤
│ Path          │ gatsby-cli > yurnalist > strip-ansi > ansi-regex             │
├───────────────┼──────────────────────────────────────────────────────────────┤
│ More info     │ https://github.com/advisories/GHSA-93q8-gq69-wqmw            │
└───────────────┴──────────────────────────────────────────────────────────────┘
┌───────────────┬──────────────────────────────────────────────────────────────┐
│ Moderate      │  Inefficient Regular Expression Complexity in                │
│               │ chalk/ansi-regex                                             │
├───────────────┼──────────────────────────────────────────────────────────────┤
│ Package       │ ansi-regex                                                   │
├───────────────┼──────────────────────────────────────────────────────────────┤
│ Patched in    │ >=5.0.1                                                      │
├───────────────┼──────────────────────────────────────────────────────────────┤
│ Dependency of │ gatsby                                                       │
├───────────────┼──────────────────────────────────────────────────────────────┤
│ Path          │ gatsby > gatsby-cli > yurnalist > strip-ansi > ansi-regex    │
├───────────────┼──────────────────────────────────────────────────────────────┤
│ More info     │ https://github.com/advisories/GHSA-93q8-gq69-wqmw            │
└───────────────┴──────────────────────────────────────────────────────────────┘
┌───────────────┬──────────────────────────────────────────────────────────────┐
│ Moderate      │  Inefficient Regular Expression Complexity in                │
│               │ chalk/ansi-regex                                             │
├───────────────┼──────────────────────────────────────────────────────────────┤
│ Package       │ ansi-regex                                                   │
├───────────────┼──────────────────────────────────────────────────────────────┤
│ Patched in    │ >=5.0.1                                                      │
├───────────────┼──────────────────────────────────────────────────────────────┤
│ Dependency of │ gatsby                                                       │
├───────────────┼──────────────────────────────────────────────────────────────┤
│ Path          │ gatsby > strip-ansi > ansi-regex                             │
├───────────────┼──────────────────────────────────────────────────────────────┤
│ More info     │ https://github.com/advisories/GHSA-93q8-gq69-wqmw            │
└───────────────┴──────────────────────────────────────────────────────────────┘
┌───────────────┬──────────────────────────────────────────────────────────────┐
│ Moderate      │  Inefficient Regular Expression Complexity in                │
│               │ chalk/ansi-regex                                             │
├───────────────┼──────────────────────────────────────────────────────────────┤
│ Package       │ ansi-regex                                                   │
├───────────────┼──────────────────────────────────────────────────────────────┤
│ Patched in    │ >=5.0.1                                                      │
├───────────────┼──────────────────────────────────────────────────────────────┤
│ Dependency of │ node-sass                                                    │
├───────────────┼──────────────────────────────────────────────────────────────┤
│ Path          │ node-sass > sass-graph > yargs > string-width > strip-ansi > │
│               │ ansi-regex                                                   │
├───────────────┼──────────────────────────────────────────────────────────────┤
│ More info     │ https://github.com/advisories/GHSA-93q8-gq69-wqmw            │
└───────────────┴──────────────────────────────────────────────────────────────┘
┌───────────────┬──────────────────────────────────────────────────────────────┐
│ Moderate      │  Inefficient Regular Expression Complexity in                │
│               │ chalk/ansi-regex                                             │
├───────────────┼──────────────────────────────────────────────────────────────┤
│ Package       │ ansi-regex                                                   │
├───────────────┼──────────────────────────────────────────────────────────────┤
│ Patched in    │ >=5.0.1                                                      │
├───────────────┼──────────────────────────────────────────────────────────────┤
│ Dependency of │ node-sass                                                    │
├───────────────┼──────────────────────────────────────────────────────────────┤
│ Path          │ node-sass > sass-graph > yargs > cliui > string-width >      │
│               │ strip-ansi > ansi-regex                                      │
├───────────────┼──────────────────────────────────────────────────────────────┤
│ More info     │ https://github.com/advisories/GHSA-93q8-gq69-wqmw            │
└───────────────┴──────────────────────────────────────────────────────────────┘
┌───────────────┬──────────────────────────────────────────────────────────────┐
│ Moderate      │  Inefficient Regular Expression Complexity in                │
│               │ chalk/ansi-regex                                             │
├───────────────┼──────────────────────────────────────────────────────────────┤
│ Package       │ ansi-regex                                                   │
├───────────────┼──────────────────────────────────────────────────────────────┤
│ Patched in    │ >=5.0.1                                                      │
├───────────────┼──────────────────────────────────────────────────────────────┤
│ Dependency of │ node-sass                                                    │
├───────────────┼──────────────────────────────────────────────────────────────┤
│ Path          │ node-sass > sass-graph > yargs > cliui > wrap-ansi >         │
│               │ string-width > strip-ansi > ansi-regex                       │
├───────────────┼──────────────────────────────────────────────────────────────┤
│ More info     │ https://github.com/advisories/GHSA-93q8-gq69-wqmw            │
└───────────────┴──────────────────────────────────────────────────────────────┘
┌───────────────┬──────────────────────────────────────────────────────────────┐
│ Moderate      │ Inefficient Regular Expression Complexity in nth-check       │
├───────────────┼──────────────────────────────────────────────────────────────┤
│ Package       │ nth-check                                                    │
├───────────────┼──────────────────────────────────────────────────────────────┤
│ Patched in    │ >=2.0.1                                                      │
├───────────────┼──────────────────────────────────────────────────────────────┤
│ Dependency of │ gatsby-plugin-sharp                                          │
├───────────────┼──────────────────────────────────────────────────────────────┤
│ Path          │ gatsby-plugin-sharp > svgo > css-select > nth-check          │
├───────────────┼──────────────────────────────────────────────────────────────┤
│ More info     │ https://github.com/advisories/GHSA-rp65-9cf3-cjxr            │
└───────────────┴──────────────────────────────────────────────────────────────┘
┌───────────────┬──────────────────────────────────────────────────────────────┐
│ High          │ Uncontrolled Resource Consumption in ansi-html               │
├───────────────┼──────────────────────────────────────────────────────────────┤
│ Package       │ ansi-html                                                    │
├───────────────┼──────────────────────────────────────────────────────────────┤
│ Patched in    │ No patch available                                           │
├───────────────┼──────────────────────────────────────────────────────────────┤
│ Dependency of │ gatsby                                                       │
├───────────────┼──────────────────────────────────────────────────────────────┤
│ Path          │ gatsby > @gatsbyjs/webpack-hot-middleware > ansi-html        │
├───────────────┼──────────────────────────────────────────────────────────────┤
│ More info     │ https://github.com/advisories/GHSA-whgm-jr23-g3j9            │
└───────────────┴──────────────────────────────────────────────────────────────┘
┌───────────────┬──────────────────────────────────────────────────────────────┐
│ Moderate      │ json-schema is vulnerable to Prototype Pollution             │
├───────────────┼──────────────────────────────────────────────────────────────┤
│ Package       │ json-schema                                                  │
├───────────────┼──────────────────────────────────────────────────────────────┤
│ Patched in    │ >=0.4.0                                                      │
├───────────────┼──────────────────────────────────────────────────────────────┤
│ Dependency of │ node-sass                                                    │
├───────────────┼──────────────────────────────────────────────────────────────┤
│ Path          │ node-sass > request > http-signature > jsprim > json-schema  │
├───────────────┼──────────────────────────────────────────────────────────────┤
│ More info     │ https://github.com/advisories/GHSA-896r-f27r-55mw            │
└───────────────┴──────────────────────────────────────────────────────────────┘
┌───────────────┬──────────────────────────────────────────────────────────────┐
│ Moderate      │ json-schema is vulnerable to Prototype Pollution             │
├───────────────┼──────────────────────────────────────────────────────────────┤
│ Package       │ json-schema                                                  │
├───────────────┼──────────────────────────────────────────────────────────────┤
│ Patched in    │ >=0.4.0                                                      │
├───────────────┼──────────────────────────────────────────────────────────────┤
│ Dependency of │ node-sass                                                    │
├───────────────┼──────────────────────────────────────────────────────────────┤
│ Path          │ node-sass > node-gyp > request > http-signature > jsprim >   │
│               │ json-schema                                                  │
├───────────────┼──────────────────────────────────────────────────────────────┤
│ More info     │ https://github.com/advisories/GHSA-896r-f27r-55mw            │
└───────────────┴──────────────────────────────────────────────────────────────┘
found 12 vulnerabilities (11 moderate, 1 high) in 2529 scanned packages
  12 vulnerabilities require manual review. See the full report for details.
github-actions[bot] commented 2 years ago 
# npm audit report

ansi-html  *
Severity: high
Uncontrolled Resource Consumption in ansi-html - https://github.com/advisories/GHSA-whgm-jr23-g3j9
fix available via `npm audit fix --force`
Will install gatsby-plugin-feed@2.13.1, which is a breaking change
node_modules/ansi-html
  @gatsbyjs/webpack-hot-middleware  *
  Depends on vulnerable versions of ansi-html
  node_modules/@gatsbyjs/webpack-hot-middleware
    gatsby  2.3.24-ink.60 - 2.3.24-ink.61 || >=2.6.0-alpha.1
    Depends on vulnerable versions of @gatsbyjs/webpack-hot-middleware
    Depends on vulnerable versions of @pmmmwh/react-refresh-webpack-plugin
    Depends on vulnerable versions of gatsby-cli
    node_modules/gatsby
      @ragaeeb/gatsby-plugin-chatwoot  *
      Depends on vulnerable versions of gatsby
      node_modules/@ragaeeb/gatsby-plugin-chatwoot
      babel-plugin-remove-graphql-queries  >=2.17.0-next.0
      Depends on vulnerable versions of gatsby
      node_modules/babel-plugin-remove-graphql-queries
      gatsby-plugin-feed  >=2.14.0-next.0
      Depends on vulnerable versions of gatsby
      node_modules/gatsby-plugin-feed
      gatsby-plugin-manifest  >=2.13.0-next.0
      Depends on vulnerable versions of gatsby
      node_modules/gatsby-plugin-manifest
      gatsby-plugin-offline  >=3.11.0-next.0
      Depends on vulnerable versions of gatsby
      node_modules/gatsby-plugin-offline
      gatsby-plugin-page-creator  >=2.11.0-next.0
      Depends on vulnerable versions of gatsby
      Depends on vulnerable versions of gatsby-plugin-utils
      node_modules/gatsby-plugin-page-creator
      gatsby-plugin-preact  >=4.8.0-next.0
      Depends on vulnerable versions of @gatsbyjs/webpack-hot-middleware
      Depends on vulnerable versions of gatsby
      node_modules/gatsby-plugin-preact
      gatsby-plugin-react-helmet  >=3.11.0-next.0
      Depends on vulnerable versions of gatsby
      node_modules/gatsby-plugin-react-helmet
      gatsby-plugin-sharp  >=2.0.31
      Depends on vulnerable versions of gatsby
      Depends on vulnerable versions of gatsby-plugin-utils
      Depends on vulnerable versions of svgo
      node_modules/gatsby-plugin-sharp
        gatsby-remark-images  1.6.0-alpha.03b9df85 - 2.0.0-alpha.23 || 2.1.0-alpha.80a21f04 - 2.1.0-alpha.e328d33f || >=3.12.0-next.0
        Depends on vulnerable versions of gatsby
        Depends on vulnerable versions of gatsby-plugin-sharp
        node_modules/gatsby-remark-images
        gatsby-transformer-sharp  >=2.13.0-next.0
        Depends on vulnerable versions of gatsby
        Depends on vulnerable versions of gatsby-plugin-sharp
        node_modules/gatsby-transformer-sharp
      gatsby-plugin-sitemap  >=2.13.0-next.0
      Depends on vulnerable versions of gatsby
      node_modules/gatsby-plugin-sitemap
      gatsby-plugin-typescript  >=2.13.0-next.0
      Depends on vulnerable versions of gatsby
      node_modules/gatsby-plugin-typescript
      gatsby-plugin-utils  >=0.10.0-next.0
      Depends on vulnerable versions of gatsby
      node_modules/gatsby-plugin-utils
      gatsby-remark-copy-linked-files  >=2.11.0-next.0
      Depends on vulnerable versions of gatsby
      node_modules/gatsby-remark-copy-linked-files
      gatsby-remark-responsive-iframe  >=2.12.0-next.0
      Depends on vulnerable versions of gatsby
      node_modules/gatsby-remark-responsive-iframe
      gatsby-remark-smartypants  >=2.11.0-next.0
      Depends on vulnerable versions of gatsby
      node_modules/gatsby-remark-smartypants
      gatsby-source-filesystem  >=2.12.0-next.0
      Depends on vulnerable versions of gatsby
      node_modules/gatsby-source-filesystem
      gatsby-transformer-remark  *
      Depends on vulnerable versions of gatsby
      Depends on vulnerable versions of sanitize-html
      node_modules/gatsby-transformer-remark
  @pmmmwh/react-refresh-webpack-plugin  <=0.5.0-rc.6
  Depends on vulnerable versions of ansi-html
  node_modules/@pmmmwh/react-refresh-webpack-plugin

ansi-regex  >2.1.1 <5.0.1
Severity: moderate
 Inefficient Regular Expression Complexity in chalk/ansi-regex - https://github.com/advisories/GHSA-93q8-gq69-wqmw
fix available via `npm audit fix --force`
Will install gatsby-cli@2.5.15, which is a breaking change
node_modules/yurnalist/node_modules/ansi-regex
  strip-ansi  4.0.0 - 5.2.0
  Depends on vulnerable versions of ansi-regex
  node_modules/yurnalist/node_modules/strip-ansi
    yurnalist  >=1.0.5
    Depends on vulnerable versions of strip-ansi
    node_modules/yurnalist
      gatsby-cli  2.5.9-ink.60 - 2.5.9-ink.61 || >=2.6.0-0
      Depends on vulnerable versions of yurnalist
      node_modules/gatsby-cli
        gatsby  2.3.24-ink.60 - 2.3.24-ink.61 || >=2.6.0-alpha.1
        Depends on vulnerable versions of @gatsbyjs/webpack-hot-middleware
        Depends on vulnerable versions of @pmmmwh/react-refresh-webpack-plugin
        Depends on vulnerable versions of gatsby-cli
        node_modules/gatsby
          @ragaeeb/gatsby-plugin-chatwoot  *
          Depends on vulnerable versions of gatsby
          node_modules/@ragaeeb/gatsby-plugin-chatwoot
          babel-plugin-remove-graphql-queries  >=2.17.0-next.0
          Depends on vulnerable versions of gatsby
          node_modules/babel-plugin-remove-graphql-queries
          gatsby-plugin-feed  >=2.14.0-next.0
          Depends on vulnerable versions of gatsby
          node_modules/gatsby-plugin-feed
          gatsby-plugin-manifest  >=2.13.0-next.0
          Depends on vulnerable versions of gatsby
          node_modules/gatsby-plugin-manifest
          gatsby-plugin-offline  >=3.11.0-next.0
          Depends on vulnerable versions of gatsby
          node_modules/gatsby-plugin-offline
          gatsby-plugin-page-creator  >=2.11.0-next.0
          Depends on vulnerable versions of gatsby
          Depends on vulnerable versions of gatsby-plugin-utils
          node_modules/gatsby-plugin-page-creator
          gatsby-plugin-preact  >=4.8.0-next.0
          Depends on vulnerable versions of @gatsbyjs/webpack-hot-middleware
          Depends on vulnerable versions of gatsby
          node_modules/gatsby-plugin-preact
          gatsby-plugin-react-helmet  >=3.11.0-next.0
          Depends on vulnerable versions of gatsby
          node_modules/gatsby-plugin-react-helmet
          gatsby-plugin-sharp  >=2.0.31
          Depends on vulnerable versions of gatsby
          Depends on vulnerable versions of gatsby-plugin-utils
          Depends on vulnerable versions of svgo
          node_modules/gatsby-plugin-sharp
            gatsby-remark-images  1.6.0-alpha.03b9df85 - 2.0.0-alpha.23 || 2.1.0-alpha.80a21f04 - 2.1.0-alpha.e328d33f || >=3.12.0-next.0
            Depends on vulnerable versions of gatsby
            Depends on vulnerable versions of gatsby-plugin-sharp
            node_modules/gatsby-remark-images
            gatsby-transformer-sharp  >=2.13.0-next.0
            Depends on vulnerable versions of gatsby
            Depends on vulnerable versions of gatsby-plugin-sharp
            node_modules/gatsby-transformer-sharp
          gatsby-plugin-sitemap  >=2.13.0-next.0
          Depends on vulnerable versions of gatsby
          node_modules/gatsby-plugin-sitemap
          gatsby-plugin-typescript  >=2.13.0-next.0
          Depends on vulnerable versions of gatsby
          node_modules/gatsby-plugin-typescript
          gatsby-plugin-utils  >=0.10.0-next.0
          Depends on vulnerable versions of gatsby
          node_modules/gatsby-plugin-utils
          gatsby-remark-copy-linked-files  >=2.11.0-next.0
          Depends on vulnerable versions of gatsby
          node_modules/gatsby-remark-copy-linked-files
          gatsby-remark-responsive-iframe  >=2.12.0-next.0
          Depends on vulnerable versions of gatsby
          node_modules/gatsby-remark-responsive-iframe
          gatsby-remark-smartypants  >=2.11.0-next.0
          Depends on vulnerable versions of gatsby
          node_modules/gatsby-remark-smartypants
          gatsby-source-filesystem  >=2.12.0-next.0
          Depends on vulnerable versions of gatsby
          node_modules/gatsby-source-filesystem
          gatsby-transformer-remark  *
          Depends on vulnerable versions of gatsby
          Depends on vulnerable versions of sanitize-html
          node_modules/gatsby-transformer-remark

node-fetch  <2.6.7
Severity: high
node-fetch is vulnerable to Exposure of Sensitive Information to an Unauthorized Actor - https://github.com/advisories/GHSA-r683-j2x4-v87g
fix available via `npm audit fix`
node_modules/cross-fetch/node_modules/node-fetch
  cross-fetch  <=3.1.4 || >=3.2.0-alpha.0
  Depends on vulnerable versions of node-fetch
  node_modules/cross-fetch
    @graphql-tools/url-loader  <=7.4.3-alpha-9f8b9c45.0
    Depends on vulnerable versions of cross-fetch
    node_modules/@graphql-tools/url-loader
      graphql-config  <=0.0.0-experimental-feb71d0.7ba || 3.0.3 - 3.3.0 || 3.4.1
      Depends on vulnerable versions of @graphql-tools/url-loader
      node_modules/graphql-config

nth-check  <2.0.1
Severity: moderate
Inefficient Regular Expression Complexity in nth-check - https://github.com/advisories/GHSA-rp65-9cf3-cjxr
fix available via `npm audit fix --force`
Will install gatsby-plugin-sharp@2.14.4, which is a breaking change
node_modules/svgo/node_modules/nth-check
  css-select  <=3.1.0
  Depends on vulnerable versions of nth-check
  node_modules/svgo/node_modules/css-select
    svgo  1.0.0 - 1.3.2
    Depends on vulnerable versions of css-select
    node_modules/svgo
      gatsby-plugin-sharp  >=2.0.31
      Depends on vulnerable versions of gatsby
      Depends on vulnerable versions of gatsby-plugin-utils
      Depends on vulnerable versions of svgo
      node_modules/gatsby-plugin-sharp
        gatsby-remark-images  1.6.0-alpha.03b9df85 - 2.0.0-alpha.23 || 2.1.0-alpha.80a21f04 - 2.1.0-alpha.e328d33f || >=3.12.0-next.0
        Depends on vulnerable versions of gatsby
        Depends on vulnerable versions of gatsby-plugin-sharp
        node_modules/gatsby-remark-images
        gatsby-transformer-sharp  >=2.13.0-next.0
        Depends on vulnerable versions of gatsby
        Depends on vulnerable versions of gatsby-plugin-sharp
        node_modules/gatsby-transformer-sharp

postcss  <8.2.13
Severity: moderate
Regular Expression Denial of Service in postcss - https://github.com/advisories/GHSA-566m-qj78-rww5
fix available via `npm audit fix --force`
Will install gatsby-plugin-sass@3.2.0, which is a breaking change
node_modules/resolve-url-loader/node_modules/postcss
node_modules/sanitize-html/node_modules/postcss
  resolve-url-loader  0.0.1-experiment-postcss || 3.0.0-alpha.1 - 4.0.0
  Depends on vulnerable versions of postcss
  node_modules/resolve-url-loader
    gatsby-plugin-sass  >=3.3.0-next.0
    Depends on vulnerable versions of resolve-url-loader
    node_modules/gatsby-plugin-sass
  sanitize-html  <=2.3.1
  Depends on vulnerable versions of postcss
  node_modules/sanitize-html
    gatsby-transformer-remark  *
    Depends on vulnerable versions of gatsby
    Depends on vulnerable versions of sanitize-html
    node_modules/gatsby-transformer-remark

sanitize-html  <=2.3.1
Severity: moderate
Improper Input Validation in sanitize-html - https://github.com/advisories/GHSA-rjqq-98f6-6j3r
Improper Input Validation in sanitize-html - https://github.com/advisories/GHSA-mjxr-4v3x-q3m4
Depends on vulnerable versions of postcss
No fix available
node_modules/sanitize-html
  gatsby-transformer-remark  *
  Depends on vulnerable versions of gatsby
  Depends on vulnerable versions of sanitize-html
  node_modules/gatsby-transformer-remark

38 vulnerabilities (11 moderate, 27 high)

To address issues that do not require attention, run:
  npm audit fix

To address all issues possible (including breaking changes), run:
  npm audit fix --force

Some issues need review, and may require choosing
a different dependency.
github-actions[bot] commented 2 years ago 
# npm audit report

ansi-html  *
Severity: high
Uncontrolled Resource Consumption in ansi-html - https://github.com/advisories/GHSA-whgm-jr23-g3j9
fix available via `npm audit fix --force`
Will install gatsby-plugin-feed@2.13.1, which is a breaking change
node_modules/ansi-html
  @gatsbyjs/webpack-hot-middleware  *
  Depends on vulnerable versions of ansi-html
  node_modules/@gatsbyjs/webpack-hot-middleware
    gatsby  2.3.24-ink.60 - 2.3.24-ink.61 || >=2.6.0-alpha.1
    Depends on vulnerable versions of @gatsbyjs/webpack-hot-middleware
    Depends on vulnerable versions of @pmmmwh/react-refresh-webpack-plugin
    Depends on vulnerable versions of gatsby-cli
    node_modules/gatsby
      @ragaeeb/gatsby-plugin-chatwoot  *
      Depends on vulnerable versions of gatsby
      node_modules/@ragaeeb/gatsby-plugin-chatwoot
      babel-plugin-remove-graphql-queries  >=2.17.0-next.0
      Depends on vulnerable versions of gatsby
      node_modules/babel-plugin-remove-graphql-queries
      gatsby-plugin-feed  >=2.14.0-next.0
      Depends on vulnerable versions of gatsby
      node_modules/gatsby-plugin-feed
      gatsby-plugin-manifest  >=2.13.0-next.0
      Depends on vulnerable versions of gatsby
      node_modules/gatsby-plugin-manifest
      gatsby-plugin-offline  >=3.11.0-next.0
      Depends on vulnerable versions of gatsby
      node_modules/gatsby-plugin-offline
      gatsby-plugin-page-creator  >=2.11.0-next.0
      Depends on vulnerable versions of gatsby
      Depends on vulnerable versions of gatsby-plugin-utils
      node_modules/gatsby-plugin-page-creator
      gatsby-plugin-preact  >=4.8.0-next.0
      Depends on vulnerable versions of @gatsbyjs/webpack-hot-middleware
      Depends on vulnerable versions of gatsby
      node_modules/gatsby-plugin-preact
      gatsby-plugin-react-helmet  >=3.11.0-next.0
      Depends on vulnerable versions of gatsby
      node_modules/gatsby-plugin-react-helmet
      gatsby-plugin-sharp  >=2.0.31
      Depends on vulnerable versions of gatsby
      Depends on vulnerable versions of gatsby-plugin-utils
      Depends on vulnerable versions of svgo
      node_modules/gatsby-plugin-sharp
        gatsby-remark-images  1.6.0-alpha.03b9df85 - 2.0.0-alpha.23 || 2.1.0-alpha.80a21f04 - 2.1.0-alpha.e328d33f || >=3.12.0-next.0
        Depends on vulnerable versions of gatsby
        Depends on vulnerable versions of gatsby-plugin-sharp
        node_modules/gatsby-remark-images
        gatsby-transformer-sharp  >=2.13.0-next.0
        Depends on vulnerable versions of gatsby
        Depends on vulnerable versions of gatsby-plugin-sharp
        node_modules/gatsby-transformer-sharp
      gatsby-plugin-sitemap  >=2.13.0-next.0
      Depends on vulnerable versions of gatsby
      node_modules/gatsby-plugin-sitemap
      gatsby-plugin-typescript  >=2.13.0-next.0
      Depends on vulnerable versions of gatsby
      node_modules/gatsby-plugin-typescript
      gatsby-plugin-utils  >=0.10.0-next.0
      Depends on vulnerable versions of gatsby
      node_modules/gatsby-plugin-utils
      gatsby-remark-copy-linked-files  >=2.11.0-next.0
      Depends on vulnerable versions of gatsby
      node_modules/gatsby-remark-copy-linked-files
      gatsby-remark-responsive-iframe  >=2.12.0-next.0
      Depends on vulnerable versions of gatsby
      node_modules/gatsby-remark-responsive-iframe
      gatsby-remark-smartypants  >=2.11.0-next.0
      Depends on vulnerable versions of gatsby
      node_modules/gatsby-remark-smartypants
      gatsby-source-filesystem  >=2.12.0-next.0
      Depends on vulnerable versions of gatsby
      node_modules/gatsby-source-filesystem
      gatsby-transformer-remark  *
      Depends on vulnerable versions of gatsby
      Depends on vulnerable versions of sanitize-html
      node_modules/gatsby-transformer-remark
  @pmmmwh/react-refresh-webpack-plugin  <=0.5.0-rc.6
  Depends on vulnerable versions of ansi-html
  node_modules/@pmmmwh/react-refresh-webpack-plugin

ansi-regex  >2.1.1 <5.0.1
Severity: moderate
 Inefficient Regular Expression Complexity in chalk/ansi-regex - https://github.com/advisories/GHSA-93q8-gq69-wqmw
fix available via `npm audit fix --force`
Will install gatsby-cli@2.5.15, which is a breaking change
node_modules/yurnalist/node_modules/ansi-regex
  strip-ansi  4.0.0 - 5.2.0
  Depends on vulnerable versions of ansi-regex
  node_modules/yurnalist/node_modules/strip-ansi
    yurnalist  >=1.0.5
    Depends on vulnerable versions of strip-ansi
    node_modules/yurnalist
      gatsby-cli  2.5.9-ink.60 - 2.5.9-ink.61 || >=2.6.0-0
      Depends on vulnerable versions of yurnalist
      node_modules/gatsby-cli
        gatsby  2.3.24-ink.60 - 2.3.24-ink.61 || >=2.6.0-alpha.1
        Depends on vulnerable versions of @gatsbyjs/webpack-hot-middleware
        Depends on vulnerable versions of @pmmmwh/react-refresh-webpack-plugin
        Depends on vulnerable versions of gatsby-cli
        node_modules/gatsby
          @ragaeeb/gatsby-plugin-chatwoot  *
          Depends on vulnerable versions of gatsby
          node_modules/@ragaeeb/gatsby-plugin-chatwoot
          babel-plugin-remove-graphql-queries  >=2.17.0-next.0
          Depends on vulnerable versions of gatsby
          node_modules/babel-plugin-remove-graphql-queries
          gatsby-plugin-feed  >=2.14.0-next.0
          Depends on vulnerable versions of gatsby
          node_modules/gatsby-plugin-feed
          gatsby-plugin-manifest  >=2.13.0-next.0
          Depends on vulnerable versions of gatsby
          node_modules/gatsby-plugin-manifest
          gatsby-plugin-offline  >=3.11.0-next.0
          Depends on vulnerable versions of gatsby
          node_modules/gatsby-plugin-offline
          gatsby-plugin-page-creator  >=2.11.0-next.0
          Depends on vulnerable versions of gatsby
          Depends on vulnerable versions of gatsby-plugin-utils
          node_modules/gatsby-plugin-page-creator
          gatsby-plugin-preact  >=4.8.0-next.0
          Depends on vulnerable versions of @gatsbyjs/webpack-hot-middleware
          Depends on vulnerable versions of gatsby
          node_modules/gatsby-plugin-preact
          gatsby-plugin-react-helmet  >=3.11.0-next.0
          Depends on vulnerable versions of gatsby
          node_modules/gatsby-plugin-react-helmet
          gatsby-plugin-sharp  >=2.0.31
          Depends on vulnerable versions of gatsby
          Depends on vulnerable versions of gatsby-plugin-utils
          Depends on vulnerable versions of svgo
          node_modules/gatsby-plugin-sharp
            gatsby-remark-images  1.6.0-alpha.03b9df85 - 2.0.0-alpha.23 || 2.1.0-alpha.80a21f04 - 2.1.0-alpha.e328d33f || >=3.12.0-next.0
            Depends on vulnerable versions of gatsby
            Depends on vulnerable versions of gatsby-plugin-sharp
            node_modules/gatsby-remark-images
            gatsby-transformer-sharp  >=2.13.0-next.0
            Depends on vulnerable versions of gatsby
            Depends on vulnerable versions of gatsby-plugin-sharp
            node_modules/gatsby-transformer-sharp
          gatsby-plugin-sitemap  >=2.13.0-next.0
          Depends on vulnerable versions of gatsby
          node_modules/gatsby-plugin-sitemap
          gatsby-plugin-typescript  >=2.13.0-next.0
          Depends on vulnerable versions of gatsby
          node_modules/gatsby-plugin-typescript
          gatsby-plugin-utils  >=0.10.0-next.0
          Depends on vulnerable versions of gatsby
          node_modules/gatsby-plugin-utils
          gatsby-remark-copy-linked-files  >=2.11.0-next.0
          Depends on vulnerable versions of gatsby
          node_modules/gatsby-remark-copy-linked-files
          gatsby-remark-responsive-iframe  >=2.12.0-next.0
          Depends on vulnerable versions of gatsby
          node_modules/gatsby-remark-responsive-iframe
          gatsby-remark-smartypants  >=2.11.0-next.0
          Depends on vulnerable versions of gatsby
          node_modules/gatsby-remark-smartypants
          gatsby-source-filesystem  >=2.12.0-next.0
          Depends on vulnerable versions of gatsby
          node_modules/gatsby-source-filesystem
          gatsby-transformer-remark  *
          Depends on vulnerable versions of gatsby
          Depends on vulnerable versions of sanitize-html
          node_modules/gatsby-transformer-remark

follow-redirects  <1.14.8
Severity: moderate
Exposure of Sensitive Information to an Unauthorized Actor in follow-redirects - https://github.com/advisories/GHSA-pw2r-vq6v-hr8c
fix available via `npm audit fix`
node_modules/follow-redirects

node-fetch  <2.6.7
Severity: high
node-fetch is vulnerable to Exposure of Sensitive Information to an Unauthorized Actor - https://github.com/advisories/GHSA-r683-j2x4-v87g
fix available via `npm audit fix`
node_modules/cross-fetch/node_modules/node-fetch
  cross-fetch  <=3.1.4 || >=3.2.0-alpha.0
  Depends on vulnerable versions of node-fetch
  node_modules/cross-fetch
    @graphql-tools/url-loader  <=7.4.3-alpha-9f8b9c45.0
    Depends on vulnerable versions of cross-fetch
    node_modules/@graphql-tools/url-loader
      graphql-config  <=0.0.0-experimental-feb71d0.7ba || 3.0.3 - 3.3.0 || 3.4.1
      Depends on vulnerable versions of @graphql-tools/url-loader
      node_modules/graphql-config

nth-check  <2.0.1
Severity: moderate
Inefficient Regular Expression Complexity in nth-check - https://github.com/advisories/GHSA-rp65-9cf3-cjxr
fix available via `npm audit fix --force`
Will install gatsby-plugin-sharp@2.14.4, which is a breaking change
node_modules/svgo/node_modules/nth-check
  css-select  <=3.1.0
  Depends on vulnerable versions of nth-check
  node_modules/svgo/node_modules/css-select
    svgo  1.0.0 - 1.3.2
    Depends on vulnerable versions of css-select
    node_modules/svgo
      gatsby-plugin-sharp  >=2.0.31
      Depends on vulnerable versions of gatsby
      Depends on vulnerable versions of gatsby-plugin-utils
      Depends on vulnerable versions of svgo
      node_modules/gatsby-plugin-sharp
        gatsby-remark-images  1.6.0-alpha.03b9df85 - 2.0.0-alpha.23 || 2.1.0-alpha.80a21f04 - 2.1.0-alpha.e328d33f || >=3.12.0-next.0
        Depends on vulnerable versions of gatsby
        Depends on vulnerable versions of gatsby-plugin-sharp
        node_modules/gatsby-remark-images
        gatsby-transformer-sharp  >=2.13.0-next.0
        Depends on vulnerable versions of gatsby
        Depends on vulnerable versions of gatsby-plugin-sharp
        node_modules/gatsby-transformer-sharp

postcss  <8.2.13
Severity: moderate
Regular Expression Denial of Service in postcss - https://github.com/advisories/GHSA-566m-qj78-rww5
fix available via `npm audit fix --force`
Will install gatsby-plugin-sass@3.2.0, which is a breaking change
node_modules/resolve-url-loader/node_modules/postcss
node_modules/sanitize-html/node_modules/postcss
  resolve-url-loader  0.0.1-experiment-postcss || 3.0.0-alpha.1 - 4.0.0
  Depends on vulnerable versions of postcss
  node_modules/resolve-url-loader
    gatsby-plugin-sass  >=3.3.0-next.0
    Depends on vulnerable versions of resolve-url-loader
    node_modules/gatsby-plugin-sass
  sanitize-html  <=2.3.1
  Depends on vulnerable versions of postcss
  node_modules/sanitize-html
    gatsby-transformer-remark  *
    Depends on vulnerable versions of gatsby
    Depends on vulnerable versions of sanitize-html
    node_modules/gatsby-transformer-remark

sanitize-html  <=2.3.1
Severity: moderate
Improper Input Validation in sanitize-html - https://github.com/advisories/GHSA-rjqq-98f6-6j3r
Improper Input Validation in sanitize-html - https://github.com/advisories/GHSA-mjxr-4v3x-q3m4
Depends on vulnerable versions of postcss
No fix available
node_modules/sanitize-html
  gatsby-transformer-remark  *
  Depends on vulnerable versions of gatsby
  Depends on vulnerable versions of sanitize-html
  node_modules/gatsby-transformer-remark

simple-get  4.0.0
Severity: high
Exposure of Sensitive Information in simple-get - https://github.com/advisories/GHSA-wpg7-2c88-r8xv
fix available via `npm audit fix`
node_modules/simple-get

40 vulnerabilities (12 moderate, 28 high)

To address issues that do not require attention, run:
  npm audit fix

To address all issues possible (including breaking changes), run:
  npm audit fix --force

Some issues need review, and may require choosing
a different dependency.
github-actions[bot] commented 2 years ago 
# npm audit report

ansi-html  <=0.0.7
Severity: high
Uncontrolled Resource Consumption in ansi-html - https://github.com/advisories/GHSA-whgm-jr23-g3j9
fix available via `npm audit fix --force`
Will install gatsby-plugin-feed@2.13.1, which is a breaking change
node_modules/ansi-html
  @gatsbyjs/webpack-hot-middleware  *
  Depends on vulnerable versions of ansi-html
  node_modules/@gatsbyjs/webpack-hot-middleware
    gatsby  2.3.24-ink.60 - 2.3.24-ink.61 || >=2.6.0-alpha.1
    Depends on vulnerable versions of @gatsbyjs/webpack-hot-middleware
    Depends on vulnerable versions of @pmmmwh/react-refresh-webpack-plugin
    Depends on vulnerable versions of gatsby-cli
    node_modules/gatsby
      @ragaeeb/gatsby-plugin-chatwoot  *
      Depends on vulnerable versions of gatsby
      node_modules/@ragaeeb/gatsby-plugin-chatwoot
      babel-plugin-remove-graphql-queries  >=2.17.0-next.0
      Depends on vulnerable versions of gatsby
      node_modules/babel-plugin-remove-graphql-queries
      gatsby-plugin-feed  >=2.14.0-next.0
      Depends on vulnerable versions of gatsby
      node_modules/gatsby-plugin-feed
      gatsby-plugin-manifest  >=2.13.0-next.0
      Depends on vulnerable versions of gatsby
      node_modules/gatsby-plugin-manifest
      gatsby-plugin-offline  >=3.11.0-next.0
      Depends on vulnerable versions of gatsby
      node_modules/gatsby-plugin-offline
      gatsby-plugin-page-creator  >=2.11.0-next.0
      Depends on vulnerable versions of gatsby
      Depends on vulnerable versions of gatsby-plugin-utils
      node_modules/gatsby-plugin-page-creator
      gatsby-plugin-preact  >=4.8.0-next.0
      Depends on vulnerable versions of @gatsbyjs/webpack-hot-middleware
      Depends on vulnerable versions of gatsby
      node_modules/gatsby-plugin-preact
      gatsby-plugin-react-helmet  >=3.11.0-next.0
      Depends on vulnerable versions of gatsby
      node_modules/gatsby-plugin-react-helmet
      gatsby-plugin-sass  >=3.3.0-next.0
      Depends on vulnerable versions of gatsby
      node_modules/gatsby-plugin-sass
      gatsby-plugin-sharp  >=2.0.31
      Depends on vulnerable versions of gatsby
      Depends on vulnerable versions of gatsby-plugin-utils
      Depends on vulnerable versions of svgo
      node_modules/gatsby-plugin-sharp
        gatsby-remark-images  1.6.0-alpha.03b9df85 - 2.0.0-alpha.23 || 2.1.0-alpha.80a21f04 - 2.1.0-alpha.e328d33f || >=3.12.0-next.0
        Depends on vulnerable versions of gatsby
        Depends on vulnerable versions of gatsby-plugin-sharp
        node_modules/gatsby-remark-images
        gatsby-transformer-sharp  >=2.13.0-next.0
        Depends on vulnerable versions of gatsby
        Depends on vulnerable versions of gatsby-plugin-sharp
        node_modules/gatsby-transformer-sharp
      gatsby-plugin-sitemap  >=2.13.0-next.0
      Depends on vulnerable versions of gatsby
      node_modules/gatsby-plugin-sitemap
      gatsby-plugin-typescript  >=2.13.0-next.0
      Depends on vulnerable versions of gatsby
      node_modules/gatsby-plugin-typescript
      gatsby-plugin-utils  >=0.10.0-next.0
      Depends on vulnerable versions of gatsby
      node_modules/gatsby-plugin-utils
      gatsby-remark-copy-linked-files  >=2.11.0-next.0
      Depends on vulnerable versions of gatsby
      node_modules/gatsby-remark-copy-linked-files
      gatsby-remark-responsive-iframe  >=2.12.0-next.0
      Depends on vulnerable versions of gatsby
      node_modules/gatsby-remark-responsive-iframe
      gatsby-remark-smartypants  >=2.11.0-next.0
      Depends on vulnerable versions of gatsby
      node_modules/gatsby-remark-smartypants
      gatsby-source-filesystem  >=2.12.0-next.0
      Depends on vulnerable versions of gatsby
      node_modules/gatsby-source-filesystem
      gatsby-transformer-remark  *
      Depends on vulnerable versions of gatsby
      Depends on vulnerable versions of sanitize-html
      node_modules/gatsby-transformer-remark
  @pmmmwh/react-refresh-webpack-plugin  <=0.5.0-rc.6
  Depends on vulnerable versions of ansi-html
  node_modules/@pmmmwh/react-refresh-webpack-plugin

ansi-regex  >2.1.1 <5.0.1
Severity: moderate
 Inefficient Regular Expression Complexity in chalk/ansi-regex - https://github.com/advisories/GHSA-93q8-gq69-wqmw
fix available via `npm audit fix --force`
Will install gatsby-cli@2.5.15, which is a breaking change
node_modules/yurnalist/node_modules/ansi-regex
  strip-ansi  4.0.0 - 5.2.0
  Depends on vulnerable versions of ansi-regex
  node_modules/yurnalist/node_modules/strip-ansi
    yurnalist  >=1.0.5
    Depends on vulnerable versions of strip-ansi
    node_modules/yurnalist
      gatsby-cli  2.5.9-ink.60 - 2.5.9-ink.61 || >=2.6.0-0
      Depends on vulnerable versions of yurnalist
      node_modules/gatsby-cli
        gatsby  2.3.24-ink.60 - 2.3.24-ink.61 || >=2.6.0-alpha.1
        Depends on vulnerable versions of @gatsbyjs/webpack-hot-middleware
        Depends on vulnerable versions of @pmmmwh/react-refresh-webpack-plugin
        Depends on vulnerable versions of gatsby-cli
        node_modules/gatsby
          @ragaeeb/gatsby-plugin-chatwoot  *
          Depends on vulnerable versions of gatsby
          node_modules/@ragaeeb/gatsby-plugin-chatwoot
          babel-plugin-remove-graphql-queries  >=2.17.0-next.0
          Depends on vulnerable versions of gatsby
          node_modules/babel-plugin-remove-graphql-queries
          gatsby-plugin-feed  >=2.14.0-next.0
          Depends on vulnerable versions of gatsby
          node_modules/gatsby-plugin-feed
          gatsby-plugin-manifest  >=2.13.0-next.0
          Depends on vulnerable versions of gatsby
          node_modules/gatsby-plugin-manifest
          gatsby-plugin-offline  >=3.11.0-next.0
          Depends on vulnerable versions of gatsby
          node_modules/gatsby-plugin-offline
          gatsby-plugin-page-creator  >=2.11.0-next.0
          Depends on vulnerable versions of gatsby
          Depends on vulnerable versions of gatsby-plugin-utils
          node_modules/gatsby-plugin-page-creator
          gatsby-plugin-preact  >=4.8.0-next.0
          Depends on vulnerable versions of @gatsbyjs/webpack-hot-middleware
          Depends on vulnerable versions of gatsby
          node_modules/gatsby-plugin-preact
          gatsby-plugin-react-helmet  >=3.11.0-next.0
          Depends on vulnerable versions of gatsby
          node_modules/gatsby-plugin-react-helmet
          gatsby-plugin-sass  >=3.3.0-next.0
          Depends on vulnerable versions of gatsby
          node_modules/gatsby-plugin-sass
          gatsby-plugin-sharp  >=2.0.31
          Depends on vulnerable versions of gatsby
          Depends on vulnerable versions of gatsby-plugin-utils
          Depends on vulnerable versions of svgo
          node_modules/gatsby-plugin-sharp
            gatsby-remark-images  1.6.0-alpha.03b9df85 - 2.0.0-alpha.23 || 2.1.0-alpha.80a21f04 - 2.1.0-alpha.e328d33f || >=3.12.0-next.0
            Depends on vulnerable versions of gatsby
            Depends on vulnerable versions of gatsby-plugin-sharp
            node_modules/gatsby-remark-images
            gatsby-transformer-sharp  >=2.13.0-next.0
            Depends on vulnerable versions of gatsby
            Depends on vulnerable versions of gatsby-plugin-sharp
            node_modules/gatsby-transformer-sharp
          gatsby-plugin-sitemap  >=2.13.0-next.0
          Depends on vulnerable versions of gatsby
          node_modules/gatsby-plugin-sitemap
          gatsby-plugin-typescript  >=2.13.0-next.0
          Depends on vulnerable versions of gatsby
          node_modules/gatsby-plugin-typescript
          gatsby-plugin-utils  >=0.10.0-next.0
          Depends on vulnerable versions of gatsby
          node_modules/gatsby-plugin-utils
          gatsby-remark-copy-linked-files  >=2.11.0-next.0
          Depends on vulnerable versions of gatsby
          node_modules/gatsby-remark-copy-linked-files
          gatsby-remark-responsive-iframe  >=2.12.0-next.0
          Depends on vulnerable versions of gatsby
          node_modules/gatsby-remark-responsive-iframe
          gatsby-remark-smartypants  >=2.11.0-next.0
          Depends on vulnerable versions of gatsby
          node_modules/gatsby-remark-smartypants
          gatsby-source-filesystem  >=2.12.0-next.0
          Depends on vulnerable versions of gatsby
          node_modules/gatsby-source-filesystem
          gatsby-transformer-remark  *
          Depends on vulnerable versions of gatsby
          Depends on vulnerable versions of sanitize-html
          node_modules/gatsby-transformer-remark

follow-redirects  <1.14.8
Severity: moderate
Exposure of Sensitive Information to an Unauthorized Actor in follow-redirects - https://github.com/advisories/GHSA-pw2r-vq6v-hr8c
fix available via `npm audit fix`
node_modules/follow-redirects

node-fetch  <2.6.7
Severity: high
node-fetch is vulnerable to Exposure of Sensitive Information to an Unauthorized Actor - https://github.com/advisories/GHSA-r683-j2x4-v87g
fix available via `npm audit fix`
node_modules/cross-fetch/node_modules/node-fetch
  cross-fetch  <=3.1.4 || >=3.2.0-alpha.0
  Depends on vulnerable versions of node-fetch
  node_modules/cross-fetch
    @graphql-tools/url-loader  <=7.4.3-alpha-9f8b9c45.0
    Depends on vulnerable versions of cross-fetch
    node_modules/@graphql-tools/url-loader
      graphql-config  <=0.0.0-experimental-feb71d0.7ba || 3.0.3 - 3.3.0 || 3.4.1
      Depends on vulnerable versions of @graphql-tools/url-loader
      node_modules/graphql-config

nth-check  <2.0.1
Severity: moderate
Inefficient Regular Expression Complexity in nth-check - https://github.com/advisories/GHSA-rp65-9cf3-cjxr
fix available via `npm audit fix --force`
Will install gatsby-plugin-sharp@2.14.4, which is a breaking change
node_modules/svgo/node_modules/nth-check
  css-select  <=3.1.0
  Depends on vulnerable versions of nth-check
  node_modules/svgo/node_modules/css-select
    svgo  1.0.0 - 1.3.2
    Depends on vulnerable versions of css-select
    node_modules/svgo
      gatsby-plugin-sharp  >=2.0.31
      Depends on vulnerable versions of gatsby
      Depends on vulnerable versions of gatsby-plugin-utils
      Depends on vulnerable versions of svgo
      node_modules/gatsby-plugin-sharp
        gatsby-remark-images  1.6.0-alpha.03b9df85 - 2.0.0-alpha.23 || 2.1.0-alpha.80a21f04 - 2.1.0-alpha.e328d33f || >=3.12.0-next.0
        Depends on vulnerable versions of gatsby
        Depends on vulnerable versions of gatsby-plugin-sharp
        node_modules/gatsby-remark-images
        gatsby-transformer-sharp  >=2.13.0-next.0
        Depends on vulnerable versions of gatsby
        Depends on vulnerable versions of gatsby-plugin-sharp
        node_modules/gatsby-transformer-sharp

sanitize-html  <=2.3.1
Severity: moderate
Improper Input Validation in sanitize-html - https://github.com/advisories/GHSA-rjqq-98f6-6j3r
Improper Input Validation in sanitize-html - https://github.com/advisories/GHSA-mjxr-4v3x-q3m4
No fix available
node_modules/sanitize-html
  gatsby-transformer-remark  *
  Depends on vulnerable versions of gatsby
  Depends on vulnerable versions of sanitize-html
  node_modules/gatsby-transformer-remark

simple-get  4.0.0
Severity: high
Exposure of Sensitive Information in simple-get - https://github.com/advisories/GHSA-wpg7-2c88-r8xv
fix available via `npm audit fix`
node_modules/simple-get

38 vulnerabilities (9 moderate, 29 high)

To address issues that do not require attention, run:
  npm audit fix

To address all issues possible (including breaking changes), run:
  npm audit fix --force

Some issues need review, and may require choosing
a different dependency.
github-actions[bot] commented 2 years ago 
# npm audit report

ansi-html  <=0.0.7
Severity: high
Uncontrolled Resource Consumption in ansi-html - https://github.com/advisories/GHSA-whgm-jr23-g3j9
fix available via `npm audit fix --force`
Will install gatsby-remark-smartypants@2.10.0, which is a breaking change
node_modules/ansi-html
  @gatsbyjs/webpack-hot-middleware  *
  Depends on vulnerable versions of ansi-html
  node_modules/@gatsbyjs/webpack-hot-middleware
    gatsby  2.3.24-ink.60 - 2.3.24-ink.61 || >=2.6.0-alpha.1
    Depends on vulnerable versions of @gatsbyjs/webpack-hot-middleware
    Depends on vulnerable versions of @pmmmwh/react-refresh-webpack-plugin
    Depends on vulnerable versions of gatsby-cli
    node_modules/gatsby
      @ragaeeb/gatsby-plugin-chatwoot  *
      Depends on vulnerable versions of gatsby
      node_modules/@ragaeeb/gatsby-plugin-chatwoot
      babel-plugin-remove-graphql-queries  >=2.17.0-next.0
      Depends on vulnerable versions of gatsby
      node_modules/babel-plugin-remove-graphql-queries
      gatsby-plugin-feed  >=2.14.0-next.0
      Depends on vulnerable versions of gatsby
      node_modules/gatsby-plugin-feed
      gatsby-plugin-manifest  >=2.13.0-next.0
      Depends on vulnerable versions of gatsby
      node_modules/gatsby-plugin-manifest
      gatsby-plugin-offline  >=3.11.0-next.0
      Depends on vulnerable versions of gatsby
      node_modules/gatsby-plugin-offline
      gatsby-plugin-page-creator  >=2.11.0-next.0
      Depends on vulnerable versions of gatsby
      Depends on vulnerable versions of gatsby-plugin-utils
      node_modules/gatsby-plugin-page-creator
      gatsby-plugin-preact  >=4.8.0-next.0
      Depends on vulnerable versions of @gatsbyjs/webpack-hot-middleware
      Depends on vulnerable versions of gatsby
      node_modules/gatsby-plugin-preact
      gatsby-plugin-react-helmet  >=3.11.0-next.0
      Depends on vulnerable versions of gatsby
      node_modules/gatsby-plugin-react-helmet
      gatsby-plugin-sass  >=3.3.0-next.0
      Depends on vulnerable versions of gatsby
      node_modules/gatsby-plugin-sass
      gatsby-plugin-sharp  >=2.0.31
      Depends on vulnerable versions of gatsby
      Depends on vulnerable versions of gatsby-plugin-utils
      Depends on vulnerable versions of svgo
      node_modules/gatsby-plugin-sharp
        gatsby-remark-images  1.6.0-alpha.03b9df85 - 2.0.0-alpha.23 || 2.1.0-alpha.80a21f04 - 2.1.0-alpha.e328d33f || >=3.12.0-next.0
        Depends on vulnerable versions of gatsby
        Depends on vulnerable versions of gatsby-plugin-sharp
        node_modules/gatsby-remark-images
        gatsby-transformer-sharp  >=2.13.0-next.0
        Depends on vulnerable versions of gatsby
        Depends on vulnerable versions of gatsby-plugin-sharp
        node_modules/gatsby-transformer-sharp
      gatsby-plugin-sitemap  >=2.13.0-next.0
      Depends on vulnerable versions of gatsby
      node_modules/gatsby-plugin-sitemap
      gatsby-plugin-typescript  >=2.13.0-next.0
      Depends on vulnerable versions of gatsby
      node_modules/gatsby-plugin-typescript
      gatsby-plugin-utils  >=0.10.0-next.0
      Depends on vulnerable versions of gatsby
      node_modules/gatsby-plugin-utils
      gatsby-remark-copy-linked-files  >=2.11.0-next.0
      Depends on vulnerable versions of gatsby
      node_modules/gatsby-remark-copy-linked-files
      gatsby-remark-responsive-iframe  >=2.12.0-next.0
      Depends on vulnerable versions of gatsby
      node_modules/gatsby-remark-responsive-iframe
      gatsby-remark-smartypants  >=2.11.0-next.0
      Depends on vulnerable versions of gatsby
      node_modules/gatsby-remark-smartypants
      gatsby-source-filesystem  >=2.12.0-next.0
      Depends on vulnerable versions of gatsby
      node_modules/gatsby-source-filesystem
      gatsby-transformer-remark  *
      Depends on vulnerable versions of gatsby
      Depends on vulnerable versions of sanitize-html
      node_modules/gatsby-transformer-remark
  @pmmmwh/react-refresh-webpack-plugin  <=0.5.0-rc.6
  Depends on vulnerable versions of ansi-html
  node_modules/@pmmmwh/react-refresh-webpack-plugin

ansi-regex  >2.1.1 <5.0.1
Severity: moderate
 Inefficient Regular Expression Complexity in chalk/ansi-regex - https://github.com/advisories/GHSA-93q8-gq69-wqmw
fix available via `npm audit fix --force`
Will install gatsby-cli@2.5.15, which is a breaking change
node_modules/yurnalist/node_modules/ansi-regex
  strip-ansi  4.0.0 - 5.2.0
  Depends on vulnerable versions of ansi-regex
  node_modules/yurnalist/node_modules/strip-ansi
    yurnalist  >=1.0.5
    Depends on vulnerable versions of strip-ansi
    node_modules/yurnalist
      gatsby-cli  2.5.9-ink.60 - 2.5.9-ink.61 || >=2.6.0-0
      Depends on vulnerable versions of yurnalist
      node_modules/gatsby-cli
        gatsby  2.3.24-ink.60 - 2.3.24-ink.61 || >=2.6.0-alpha.1
        Depends on vulnerable versions of @gatsbyjs/webpack-hot-middleware
        Depends on vulnerable versions of @pmmmwh/react-refresh-webpack-plugin
        Depends on vulnerable versions of gatsby-cli
        node_modules/gatsby
          @ragaeeb/gatsby-plugin-chatwoot  *
          Depends on vulnerable versions of gatsby
          node_modules/@ragaeeb/gatsby-plugin-chatwoot
          babel-plugin-remove-graphql-queries  >=2.17.0-next.0
          Depends on vulnerable versions of gatsby
          node_modules/babel-plugin-remove-graphql-queries
          gatsby-plugin-feed  >=2.14.0-next.0
          Depends on vulnerable versions of gatsby
          node_modules/gatsby-plugin-feed
          gatsby-plugin-manifest  >=2.13.0-next.0
          Depends on vulnerable versions of gatsby
          node_modules/gatsby-plugin-manifest
          gatsby-plugin-offline  >=3.11.0-next.0
          Depends on vulnerable versions of gatsby
          node_modules/gatsby-plugin-offline
          gatsby-plugin-page-creator  >=2.11.0-next.0
          Depends on vulnerable versions of gatsby
          Depends on vulnerable versions of gatsby-plugin-utils
          node_modules/gatsby-plugin-page-creator
          gatsby-plugin-preact  >=4.8.0-next.0
          Depends on vulnerable versions of @gatsbyjs/webpack-hot-middleware
          Depends on vulnerable versions of gatsby
          node_modules/gatsby-plugin-preact
          gatsby-plugin-react-helmet  >=3.11.0-next.0
          Depends on vulnerable versions of gatsby
          node_modules/gatsby-plugin-react-helmet
          gatsby-plugin-sass  >=3.3.0-next.0
          Depends on vulnerable versions of gatsby
          node_modules/gatsby-plugin-sass
          gatsby-plugin-sharp  >=2.0.31
          Depends on vulnerable versions of gatsby
          Depends on vulnerable versions of gatsby-plugin-utils
          Depends on vulnerable versions of svgo
          node_modules/gatsby-plugin-sharp
            gatsby-remark-images  1.6.0-alpha.03b9df85 - 2.0.0-alpha.23 || 2.1.0-alpha.80a21f04 - 2.1.0-alpha.e328d33f || >=3.12.0-next.0
            Depends on vulnerable versions of gatsby
            Depends on vulnerable versions of gatsby-plugin-sharp
            node_modules/gatsby-remark-images
            gatsby-transformer-sharp  >=2.13.0-next.0
            Depends on vulnerable versions of gatsby
            Depends on vulnerable versions of gatsby-plugin-sharp
            node_modules/gatsby-transformer-sharp
          gatsby-plugin-sitemap  >=2.13.0-next.0
          Depends on vulnerable versions of gatsby
          node_modules/gatsby-plugin-sitemap
          gatsby-plugin-typescript  >=2.13.0-next.0
          Depends on vulnerable versions of gatsby
          node_modules/gatsby-plugin-typescript
          gatsby-plugin-utils  >=0.10.0-next.0
          Depends on vulnerable versions of gatsby
          node_modules/gatsby-plugin-utils
          gatsby-remark-copy-linked-files  >=2.11.0-next.0
          Depends on vulnerable versions of gatsby
          node_modules/gatsby-remark-copy-linked-files
          gatsby-remark-responsive-iframe  >=2.12.0-next.0
          Depends on vulnerable versions of gatsby
          node_modules/gatsby-remark-responsive-iframe
          gatsby-remark-smartypants  >=2.11.0-next.0
          Depends on vulnerable versions of gatsby
          node_modules/gatsby-remark-smartypants
          gatsby-source-filesystem  >=2.12.0-next.0
          Depends on vulnerable versions of gatsby
          node_modules/gatsby-source-filesystem
          gatsby-transformer-remark  *
          Depends on vulnerable versions of gatsby
          Depends on vulnerable versions of sanitize-html
          node_modules/gatsby-transformer-remark

follow-redirects  <1.14.8
Severity: moderate
Exposure of Sensitive Information to an Unauthorized Actor in follow-redirects - https://github.com/advisories/GHSA-pw2r-vq6v-hr8c
fix available via `npm audit fix`
node_modules/follow-redirects

node-fetch  <2.6.7
Severity: high
node-fetch is vulnerable to Exposure of Sensitive Information to an Unauthorized Actor - https://github.com/advisories/GHSA-r683-j2x4-v87g
fix available via `npm audit fix`
node_modules/cross-fetch/node_modules/node-fetch
  cross-fetch  <=3.1.4 || >=3.2.0-alpha.0
  Depends on vulnerable versions of node-fetch
  node_modules/cross-fetch
    @graphql-tools/url-loader  <=7.4.3-alpha-9f8b9c45.0
    Depends on vulnerable versions of cross-fetch
    node_modules/@graphql-tools/url-loader
      graphql-config  <=0.0.0-experimental-feb71d0.7ba || 3.0.3 - 3.3.0 || 3.4.1
      Depends on vulnerable versions of @graphql-tools/url-loader
      node_modules/graphql-config

nth-check  <2.0.1
Severity: moderate
Inefficient Regular Expression Complexity in nth-check - https://github.com/advisories/GHSA-rp65-9cf3-cjxr
fix available via `npm audit fix --force`
Will install gatsby-plugin-sharp@2.14.4, which is a breaking change
node_modules/svgo/node_modules/nth-check
  css-select  <=3.1.0
  Depends on vulnerable versions of nth-check
  node_modules/svgo/node_modules/css-select
    svgo  1.0.0 - 1.3.2
    Depends on vulnerable versions of css-select
    node_modules/svgo
      gatsby-plugin-sharp  >=2.0.31
      Depends on vulnerable versions of gatsby
      Depends on vulnerable versions of gatsby-plugin-utils
      Depends on vulnerable versions of svgo
      node_modules/gatsby-plugin-sharp
        gatsby-remark-images  1.6.0-alpha.03b9df85 - 2.0.0-alpha.23 || 2.1.0-alpha.80a21f04 - 2.1.0-alpha.e328d33f || >=3.12.0-next.0
        Depends on vulnerable versions of gatsby
        Depends on vulnerable versions of gatsby-plugin-sharp
        node_modules/gatsby-remark-images
        gatsby-transformer-sharp  >=2.13.0-next.0
        Depends on vulnerable versions of gatsby
        Depends on vulnerable versions of gatsby-plugin-sharp
        node_modules/gatsby-transformer-sharp

sanitize-html  <=2.3.1
Severity: moderate
Improper Input Validation in sanitize-html - https://github.com/advisories/GHSA-rjqq-98f6-6j3r
Improper Input Validation in sanitize-html - https://github.com/advisories/GHSA-mjxr-4v3x-q3m4
No fix available
node_modules/sanitize-html
  gatsby-transformer-remark  *
  Depends on vulnerable versions of gatsby
  Depends on vulnerable versions of sanitize-html
  node_modules/gatsby-transformer-remark

simple-get  4.0.0
Severity: high
Exposure of Sensitive Information in simple-get - https://github.com/advisories/GHSA-wpg7-2c88-r8xv
fix available via `npm audit fix`
node_modules/simple-get

38 vulnerabilities (9 moderate, 29 high)

To address issues that do not require attention, run:
  npm audit fix

To address all issues possible (including breaking changes), run:
  npm audit fix --force

Some issues need review, and may require choosing
a different dependency.
github-actions[bot] commented 2 years ago 
# npm audit report

ansi-html  <0.0.8
Severity: high
Uncontrolled Resource Consumption in ansi-html - https://github.com/advisories/GHSA-whgm-jr23-g3j9
fix available via `npm audit fix --force`
Will install gatsby-plugin-feed@2.13.1, which is a breaking change
node_modules/ansi-html
  @gatsbyjs/webpack-hot-middleware  *
  Depends on vulnerable versions of ansi-html
  node_modules/@gatsbyjs/webpack-hot-middleware
    gatsby  2.3.24-ink.60 - 2.3.24-ink.61 || >=2.6.0-alpha.1
    Depends on vulnerable versions of @gatsbyjs/webpack-hot-middleware
    Depends on vulnerable versions of @pmmmwh/react-refresh-webpack-plugin
    Depends on vulnerable versions of gatsby-cli
    node_modules/gatsby
      @ragaeeb/gatsby-plugin-chatwoot  *
      Depends on vulnerable versions of gatsby
      node_modules/@ragaeeb/gatsby-plugin-chatwoot
      babel-plugin-remove-graphql-queries  >=2.17.0-next.0
      Depends on vulnerable versions of gatsby
      node_modules/babel-plugin-remove-graphql-queries
      gatsby-plugin-feed  >=2.14.0-next.0
      Depends on vulnerable versions of gatsby
      node_modules/gatsby-plugin-feed
      gatsby-plugin-manifest  >=2.13.0-next.0
      Depends on vulnerable versions of gatsby
      node_modules/gatsby-plugin-manifest
      gatsby-plugin-offline  >=3.11.0-next.0
      Depends on vulnerable versions of gatsby
      node_modules/gatsby-plugin-offline
      gatsby-plugin-page-creator  >=2.11.0-next.0
      Depends on vulnerable versions of gatsby
      Depends on vulnerable versions of gatsby-plugin-utils
      node_modules/gatsby-plugin-page-creator
      gatsby-plugin-preact  >=4.8.0-next.0
      Depends on vulnerable versions of @gatsbyjs/webpack-hot-middleware
      Depends on vulnerable versions of gatsby
      node_modules/gatsby-plugin-preact
      gatsby-plugin-react-helmet  >=3.11.0-next.0
      Depends on vulnerable versions of gatsby
      node_modules/gatsby-plugin-react-helmet
      gatsby-plugin-sass  >=3.3.0-next.0
      Depends on vulnerable versions of gatsby
      node_modules/gatsby-plugin-sass
      gatsby-plugin-sharp  >=2.0.31
      Depends on vulnerable versions of gatsby
      Depends on vulnerable versions of gatsby-plugin-utils
      Depends on vulnerable versions of svgo
      node_modules/gatsby-plugin-sharp
        gatsby-remark-images  1.6.0-alpha.03b9df85 - 2.0.0-alpha.23 || 2.1.0-alpha.80a21f04 - 2.1.0-alpha.e328d33f || >=3.12.0-next.0
        Depends on vulnerable versions of gatsby
        Depends on vulnerable versions of gatsby-plugin-sharp
        node_modules/gatsby-remark-images
        gatsby-transformer-sharp  >=2.13.0-next.0
        Depends on vulnerable versions of gatsby
        Depends on vulnerable versions of gatsby-plugin-sharp
        node_modules/gatsby-transformer-sharp
      gatsby-plugin-sitemap  >=2.13.0-next.0
      Depends on vulnerable versions of gatsby
      node_modules/gatsby-plugin-sitemap
      gatsby-plugin-typescript  >=2.13.0-next.0
      Depends on vulnerable versions of gatsby
      node_modules/gatsby-plugin-typescript
      gatsby-plugin-utils  >=0.10.0-next.0
      Depends on vulnerable versions of gatsby
      node_modules/gatsby-plugin-utils
      gatsby-remark-copy-linked-files  >=2.11.0-next.0
      Depends on vulnerable versions of gatsby
      node_modules/gatsby-remark-copy-linked-files
      gatsby-remark-responsive-iframe  >=2.12.0-next.0
      Depends on vulnerable versions of gatsby
      node_modules/gatsby-remark-responsive-iframe
      gatsby-remark-smartypants  >=2.11.0-next.0
      Depends on vulnerable versions of gatsby
      node_modules/gatsby-remark-smartypants
      gatsby-source-filesystem  >=2.12.0-next.0
      Depends on vulnerable versions of gatsby
      node_modules/gatsby-source-filesystem
      gatsby-transformer-remark  *
      Depends on vulnerable versions of gatsby
      Depends on vulnerable versions of sanitize-html
      node_modules/gatsby-transformer-remark
  @pmmmwh/react-refresh-webpack-plugin  <=0.5.0-rc.6
  Depends on vulnerable versions of ansi-html
  node_modules/@pmmmwh/react-refresh-webpack-plugin

ansi-regex  >2.1.1 <5.0.1
Severity: moderate
 Inefficient Regular Expression Complexity in chalk/ansi-regex - https://github.com/advisories/GHSA-93q8-gq69-wqmw
fix available via `npm audit fix --force`
Will install gatsby-cli@2.5.15, which is a breaking change
node_modules/yurnalist/node_modules/ansi-regex
  strip-ansi  4.0.0 - 5.2.0
  Depends on vulnerable versions of ansi-regex
  node_modules/yurnalist/node_modules/strip-ansi
    yurnalist  >=1.0.5
    Depends on vulnerable versions of strip-ansi
    node_modules/yurnalist
      gatsby-cli  2.5.9-ink.60 - 2.5.9-ink.61 || >=2.6.0-0
      Depends on vulnerable versions of yurnalist
      node_modules/gatsby-cli
        gatsby  2.3.24-ink.60 - 2.3.24-ink.61 || >=2.6.0-alpha.1
        Depends on vulnerable versions of @gatsbyjs/webpack-hot-middleware
        Depends on vulnerable versions of @pmmmwh/react-refresh-webpack-plugin
        Depends on vulnerable versions of gatsby-cli
        node_modules/gatsby
          @ragaeeb/gatsby-plugin-chatwoot  *
          Depends on vulnerable versions of gatsby
          node_modules/@ragaeeb/gatsby-plugin-chatwoot
          babel-plugin-remove-graphql-queries  >=2.17.0-next.0
          Depends on vulnerable versions of gatsby
          node_modules/babel-plugin-remove-graphql-queries
          gatsby-plugin-feed  >=2.14.0-next.0
          Depends on vulnerable versions of gatsby
          node_modules/gatsby-plugin-feed
          gatsby-plugin-manifest  >=2.13.0-next.0
          Depends on vulnerable versions of gatsby
          node_modules/gatsby-plugin-manifest
          gatsby-plugin-offline  >=3.11.0-next.0
          Depends on vulnerable versions of gatsby
          node_modules/gatsby-plugin-offline
          gatsby-plugin-page-creator  >=2.11.0-next.0
          Depends on vulnerable versions of gatsby
          Depends on vulnerable versions of gatsby-plugin-utils
          node_modules/gatsby-plugin-page-creator
          gatsby-plugin-preact  >=4.8.0-next.0
          Depends on vulnerable versions of @gatsbyjs/webpack-hot-middleware
          Depends on vulnerable versions of gatsby
          node_modules/gatsby-plugin-preact
          gatsby-plugin-react-helmet  >=3.11.0-next.0
          Depends on vulnerable versions of gatsby
          node_modules/gatsby-plugin-react-helmet
          gatsby-plugin-sass  >=3.3.0-next.0
          Depends on vulnerable versions of gatsby
          node_modules/gatsby-plugin-sass
          gatsby-plugin-sharp  >=2.0.31
          Depends on vulnerable versions of gatsby
          Depends on vulnerable versions of gatsby-plugin-utils
          Depends on vulnerable versions of svgo
          node_modules/gatsby-plugin-sharp
            gatsby-remark-images  1.6.0-alpha.03b9df85 - 2.0.0-alpha.23 || 2.1.0-alpha.80a21f04 - 2.1.0-alpha.e328d33f || >=3.12.0-next.0
            Depends on vulnerable versions of gatsby
            Depends on vulnerable versions of gatsby-plugin-sharp
            node_modules/gatsby-remark-images
            gatsby-transformer-sharp  >=2.13.0-next.0
            Depends on vulnerable versions of gatsby
            Depends on vulnerable versions of gatsby-plugin-sharp
            node_modules/gatsby-transformer-sharp
          gatsby-plugin-sitemap  >=2.13.0-next.0
          Depends on vulnerable versions of gatsby
          node_modules/gatsby-plugin-sitemap
          gatsby-plugin-typescript  >=2.13.0-next.0
          Depends on vulnerable versions of gatsby
          node_modules/gatsby-plugin-typescript
          gatsby-plugin-utils  >=0.10.0-next.0
          Depends on vulnerable versions of gatsby
          node_modules/gatsby-plugin-utils
          gatsby-remark-copy-linked-files  >=2.11.0-next.0
          Depends on vulnerable versions of gatsby
          node_modules/gatsby-remark-copy-linked-files
          gatsby-remark-responsive-iframe  >=2.12.0-next.0
          Depends on vulnerable versions of gatsby
          node_modules/gatsby-remark-responsive-iframe
          gatsby-remark-smartypants  >=2.11.0-next.0
          Depends on vulnerable versions of gatsby
          node_modules/gatsby-remark-smartypants
          gatsby-source-filesystem  >=2.12.0-next.0
          Depends on vulnerable versions of gatsby
          node_modules/gatsby-source-filesystem
          gatsby-transformer-remark  *
          Depends on vulnerable versions of gatsby
          Depends on vulnerable versions of sanitize-html
          node_modules/gatsby-transformer-remark

follow-redirects  <1.14.8
Severity: moderate
Exposure of Sensitive Information to an Unauthorized Actor in follow-redirects - https://github.com/advisories/GHSA-pw2r-vq6v-hr8c
fix available via `npm audit fix`
node_modules/follow-redirects

node-fetch  <2.6.7
Severity: high
node-fetch is vulnerable to Exposure of Sensitive Information to an Unauthorized Actor - https://github.com/advisories/GHSA-r683-j2x4-v87g
fix available via `npm audit fix`
node_modules/cross-fetch/node_modules/node-fetch
  cross-fetch  <=3.1.4 || >=3.2.0-alpha.0
  Depends on vulnerable versions of node-fetch
  node_modules/cross-fetch
    @graphql-tools/url-loader  <=7.4.3-alpha-9f8b9c45.0
    Depends on vulnerable versions of cross-fetch
    node_modules/@graphql-tools/url-loader
      graphql-config  <=0.0.0-experimental-feb71d0.7ba || 3.0.3 - 3.3.0 || 3.4.1
      Depends on vulnerable versions of @graphql-tools/url-loader
      node_modules/graphql-config

nth-check  <2.0.1
Severity: moderate
Inefficient Regular Expression Complexity in nth-check - https://github.com/advisories/GHSA-rp65-9cf3-cjxr
fix available via `npm audit fix --force`
Will install gatsby-plugin-sharp@2.14.4, which is a breaking change
node_modules/svgo/node_modules/nth-check
  css-select  <=3.1.0
  Depends on vulnerable versions of nth-check
  node_modules/svgo/node_modules/css-select
    svgo  1.0.0 - 1.3.2
    Depends on vulnerable versions of css-select
    node_modules/svgo
      gatsby-plugin-sharp  >=2.0.31
      Depends on vulnerable versions of gatsby
      Depends on vulnerable versions of gatsby-plugin-utils
      Depends on vulnerable versions of svgo
      node_modules/gatsby-plugin-sharp
        gatsby-remark-images  1.6.0-alpha.03b9df85 - 2.0.0-alpha.23 || 2.1.0-alpha.80a21f04 - 2.1.0-alpha.e328d33f || >=3.12.0-next.0
        Depends on vulnerable versions of gatsby
        Depends on vulnerable versions of gatsby-plugin-sharp
        node_modules/gatsby-remark-images
        gatsby-transformer-sharp  >=2.13.0-next.0
        Depends on vulnerable versions of gatsby
        Depends on vulnerable versions of gatsby-plugin-sharp
        node_modules/gatsby-transformer-sharp

sanitize-html  <=2.3.1
Severity: moderate
Improper Input Validation in sanitize-html - https://github.com/advisories/GHSA-rjqq-98f6-6j3r
Improper Input Validation in sanitize-html - https://github.com/advisories/GHSA-mjxr-4v3x-q3m4
No fix available
node_modules/sanitize-html
  gatsby-transformer-remark  *
  Depends on vulnerable versions of gatsby
  Depends on vulnerable versions of sanitize-html
  node_modules/gatsby-transformer-remark

simple-get  4.0.0
Severity: high
Exposure of Sensitive Information in simple-get - https://github.com/advisories/GHSA-wpg7-2c88-r8xv
fix available via `npm audit fix`
node_modules/simple-get

38 vulnerabilities (9 moderate, 29 high)

To address issues that do not require attention, run:
  npm audit fix

To address all issues possible (including breaking changes), run:
  npm audit fix --force

Some issues need review, and may require choosing
a different dependency.
github-actions[bot] commented 2 years ago 
# npm audit report

ansi-html  <0.0.8
Severity: high
Uncontrolled Resource Consumption in ansi-html - https://github.com/advisories/GHSA-whgm-jr23-g3j9
fix available via `npm audit fix --force`
Will install gatsby-plugin-feed@2.13.1, which is a breaking change
node_modules/ansi-html
  @gatsbyjs/webpack-hot-middleware  *
  Depends on vulnerable versions of ansi-html
  node_modules/@gatsbyjs/webpack-hot-middleware
    gatsby  2.3.24-ink.60 - 2.3.24-ink.61 || >=2.6.0-alpha.1
    Depends on vulnerable versions of @gatsbyjs/webpack-hot-middleware
    Depends on vulnerable versions of @pmmmwh/react-refresh-webpack-plugin
    Depends on vulnerable versions of gatsby-cli
    node_modules/gatsby
      @ragaeeb/gatsby-plugin-chatwoot  *
      Depends on vulnerable versions of gatsby
      node_modules/@ragaeeb/gatsby-plugin-chatwoot
      babel-plugin-remove-graphql-queries  >=2.17.0-next.0
      Depends on vulnerable versions of gatsby
      node_modules/babel-plugin-remove-graphql-queries
      gatsby-plugin-feed  >=2.14.0-next.0
      Depends on vulnerable versions of gatsby
      node_modules/gatsby-plugin-feed
      gatsby-plugin-manifest  >=2.13.0-next.0
      Depends on vulnerable versions of gatsby
      node_modules/gatsby-plugin-manifest
      gatsby-plugin-offline  >=3.11.0-next.0
      Depends on vulnerable versions of gatsby
      node_modules/gatsby-plugin-offline
      gatsby-plugin-page-creator  >=2.11.0-next.0
      Depends on vulnerable versions of gatsby
      Depends on vulnerable versions of gatsby-plugin-utils
      node_modules/gatsby-plugin-page-creator
      gatsby-plugin-preact  >=4.8.0-next.0
      Depends on vulnerable versions of @gatsbyjs/webpack-hot-middleware
      Depends on vulnerable versions of gatsby
      node_modules/gatsby-plugin-preact
      gatsby-plugin-react-helmet  >=3.11.0-next.0
      Depends on vulnerable versions of gatsby
      node_modules/gatsby-plugin-react-helmet
      gatsby-plugin-sass  >=3.3.0-next.0
      Depends on vulnerable versions of gatsby
      node_modules/gatsby-plugin-sass
      gatsby-plugin-sharp  >=2.0.31
      Depends on vulnerable versions of gatsby
      Depends on vulnerable versions of gatsby-plugin-utils
      Depends on vulnerable versions of svgo
      node_modules/gatsby-plugin-sharp
        gatsby-remark-images  1.6.0-alpha.03b9df85 - 2.0.0-alpha.23 || 2.1.0-alpha.80a21f04 - 2.1.0-alpha.e328d33f || >=3.12.0-next.0
        Depends on vulnerable versions of gatsby
        Depends on vulnerable versions of gatsby-plugin-sharp
        node_modules/gatsby-remark-images
        gatsby-transformer-sharp  >=2.13.0-next.0
        Depends on vulnerable versions of gatsby
        Depends on vulnerable versions of gatsby-plugin-sharp
        node_modules/gatsby-transformer-sharp
      gatsby-plugin-sitemap  >=2.13.0-next.0
      Depends on vulnerable versions of gatsby
      node_modules/gatsby-plugin-sitemap
      gatsby-plugin-typescript  >=2.13.0-next.0
      Depends on vulnerable versions of gatsby
      node_modules/gatsby-plugin-typescript
      gatsby-plugin-utils  >=0.10.0-next.0
      Depends on vulnerable versions of gatsby
      node_modules/gatsby-plugin-utils
      gatsby-remark-copy-linked-files  >=2.11.0-next.0
      Depends on vulnerable versions of gatsby
      node_modules/gatsby-remark-copy-linked-files
      gatsby-remark-responsive-iframe  >=2.12.0-next.0
      Depends on vulnerable versions of gatsby
      node_modules/gatsby-remark-responsive-iframe
      gatsby-remark-smartypants  >=2.11.0-next.0
      Depends on vulnerable versions of gatsby
      node_modules/gatsby-remark-smartypants
      gatsby-source-filesystem  >=2.12.0-next.0
      Depends on vulnerable versions of gatsby
      node_modules/gatsby-source-filesystem
      gatsby-transformer-remark  *
      Depends on vulnerable versions of gatsby
      Depends on vulnerable versions of sanitize-html
      node_modules/gatsby-transformer-remark
  @pmmmwh/react-refresh-webpack-plugin  <=0.5.0-rc.6
  Depends on vulnerable versions of ansi-html
  node_modules/@pmmmwh/react-refresh-webpack-plugin

ansi-regex  >2.1.1 <5.0.1
Severity: moderate
 Inefficient Regular Expression Complexity in chalk/ansi-regex - https://github.com/advisories/GHSA-93q8-gq69-wqmw
fix available via `npm audit fix --force`
Will install gatsby-cli@2.5.15, which is a breaking change
node_modules/yurnalist/node_modules/ansi-regex
  strip-ansi  4.0.0 - 5.2.0
  Depends on vulnerable versions of ansi-regex
  node_modules/yurnalist/node_modules/strip-ansi
    yurnalist  >=1.0.5
    Depends on vulnerable versions of strip-ansi
    node_modules/yurnalist
      gatsby-cli  2.5.9-ink.60 - 2.5.9-ink.61 || >=2.6.0-0
      Depends on vulnerable versions of yurnalist
      node_modules/gatsby-cli
        gatsby  2.3.24-ink.60 - 2.3.24-ink.61 || >=2.6.0-alpha.1
        Depends on vulnerable versions of @gatsbyjs/webpack-hot-middleware
        Depends on vulnerable versions of @pmmmwh/react-refresh-webpack-plugin
        Depends on vulnerable versions of gatsby-cli
        node_modules/gatsby
          @ragaeeb/gatsby-plugin-chatwoot  *
          Depends on vulnerable versions of gatsby
          node_modules/@ragaeeb/gatsby-plugin-chatwoot
          babel-plugin-remove-graphql-queries  >=2.17.0-next.0
          Depends on vulnerable versions of gatsby
          node_modules/babel-plugin-remove-graphql-queries
          gatsby-plugin-feed  >=2.14.0-next.0
          Depends on vulnerable versions of gatsby
          node_modules/gatsby-plugin-feed
          gatsby-plugin-manifest  >=2.13.0-next.0
          Depends on vulnerable versions of gatsby
          node_modules/gatsby-plugin-manifest
          gatsby-plugin-offline  >=3.11.0-next.0
          Depends on vulnerable versions of gatsby
          node_modules/gatsby-plugin-offline
          gatsby-plugin-page-creator  >=2.11.0-next.0
          Depends on vulnerable versions of gatsby
          Depends on vulnerable versions of gatsby-plugin-utils
          node_modules/gatsby-plugin-page-creator
          gatsby-plugin-preact  >=4.8.0-next.0
          Depends on vulnerable versions of @gatsbyjs/webpack-hot-middleware
          Depends on vulnerable versions of gatsby
          node_modules/gatsby-plugin-preact
          gatsby-plugin-react-helmet  >=3.11.0-next.0
          Depends on vulnerable versions of gatsby
          node_modules/gatsby-plugin-react-helmet
          gatsby-plugin-sass  >=3.3.0-next.0
          Depends on vulnerable versions of gatsby
          node_modules/gatsby-plugin-sass
          gatsby-plugin-sharp  >=2.0.31
          Depends on vulnerable versions of gatsby
          Depends on vulnerable versions of gatsby-plugin-utils
          Depends on vulnerable versions of svgo
          node_modules/gatsby-plugin-sharp
            gatsby-remark-images  1.6.0-alpha.03b9df85 - 2.0.0-alpha.23 || 2.1.0-alpha.80a21f04 - 2.1.0-alpha.e328d33f || >=3.12.0-next.0
            Depends on vulnerable versions of gatsby
            Depends on vulnerable versions of gatsby-plugin-sharp
            node_modules/gatsby-remark-images
            gatsby-transformer-sharp  >=2.13.0-next.0
            Depends on vulnerable versions of gatsby
            Depends on vulnerable versions of gatsby-plugin-sharp
            node_modules/gatsby-transformer-sharp
          gatsby-plugin-sitemap  >=2.13.0-next.0
          Depends on vulnerable versions of gatsby
          node_modules/gatsby-plugin-sitemap
          gatsby-plugin-typescript  >=2.13.0-next.0
          Depends on vulnerable versions of gatsby
          node_modules/gatsby-plugin-typescript
          gatsby-plugin-utils  >=0.10.0-next.0
          Depends on vulnerable versions of gatsby
          node_modules/gatsby-plugin-utils
          gatsby-remark-copy-linked-files  >=2.11.0-next.0
          Depends on vulnerable versions of gatsby
          node_modules/gatsby-remark-copy-linked-files
          gatsby-remark-responsive-iframe  >=2.12.0-next.0
          Depends on vulnerable versions of gatsby
          node_modules/gatsby-remark-responsive-iframe
          gatsby-remark-smartypants  >=2.11.0-next.0
          Depends on vulnerable versions of gatsby
          node_modules/gatsby-remark-smartypants
          gatsby-source-filesystem  >=2.12.0-next.0
          Depends on vulnerable versions of gatsby
          node_modules/gatsby-source-filesystem
          gatsby-transformer-remark  *
          Depends on vulnerable versions of gatsby
          Depends on vulnerable versions of sanitize-html
          node_modules/gatsby-transformer-remark

follow-redirects  <1.14.8
Severity: moderate
Exposure of Sensitive Information to an Unauthorized Actor in follow-redirects - https://github.com/advisories/GHSA-pw2r-vq6v-hr8c
fix available via `npm audit fix`
node_modules/follow-redirects

node-fetch  <2.6.7
Severity: high
node-fetch is vulnerable to Exposure of Sensitive Information to an Unauthorized Actor - https://github.com/advisories/GHSA-r683-j2x4-v87g
fix available via `npm audit fix`
node_modules/cross-fetch/node_modules/node-fetch
  cross-fetch  <=3.1.4 || >=3.2.0-alpha.0
  Depends on vulnerable versions of node-fetch
  node_modules/cross-fetch
    @graphql-tools/url-loader  <=7.4.3-alpha-9f8b9c45.0
    Depends on vulnerable versions of cross-fetch
    node_modules/@graphql-tools/url-loader
      graphql-config  <=0.0.0-experimental-feb71d0.7ba || 3.0.3 - 3.3.0 || 3.4.1
      Depends on vulnerable versions of @graphql-tools/url-loader
      node_modules/graphql-config

nth-check  <2.0.1
Severity: moderate
Inefficient Regular Expression Complexity in nth-check - https://github.com/advisories/GHSA-rp65-9cf3-cjxr
fix available via `npm audit fix --force`
Will install gatsby-plugin-sharp@2.14.4, which is a breaking change
node_modules/svgo/node_modules/nth-check
  css-select  <=3.1.0
  Depends on vulnerable versions of nth-check
  node_modules/svgo/node_modules/css-select
    svgo  1.0.0 - 1.3.2
    Depends on vulnerable versions of css-select
    node_modules/svgo
      gatsby-plugin-sharp  >=2.0.31
      Depends on vulnerable versions of gatsby
      Depends on vulnerable versions of gatsby-plugin-utils
      Depends on vulnerable versions of svgo
      node_modules/gatsby-plugin-sharp
        gatsby-remark-images  1.6.0-alpha.03b9df85 - 2.0.0-alpha.23 || 2.1.0-alpha.80a21f04 - 2.1.0-alpha.e328d33f || >=3.12.0-next.0
        Depends on vulnerable versions of gatsby
        Depends on vulnerable versions of gatsby-plugin-sharp
        node_modules/gatsby-remark-images
        gatsby-transformer-sharp  >=2.13.0-next.0
        Depends on vulnerable versions of gatsby
        Depends on vulnerable versions of gatsby-plugin-sharp
        node_modules/gatsby-transformer-sharp

sanitize-html  <=2.3.1
Severity: moderate
Improper Input Validation in sanitize-html - https://github.com/advisories/GHSA-rjqq-98f6-6j3r
Improper Input Validation in sanitize-html - https://github.com/advisories/GHSA-mjxr-4v3x-q3m4
No fix available
node_modules/sanitize-html
  gatsby-transformer-remark  *
  Depends on vulnerable versions of gatsby
  Depends on vulnerable versions of sanitize-html
  node_modules/gatsby-transformer-remark

simple-get  4.0.0
Severity: high
Exposure of Sensitive Information in simple-get - https://github.com/advisories/GHSA-wpg7-2c88-r8xv
fix available via `npm audit fix`
node_modules/simple-get

38 vulnerabilities (9 moderate, 29 high)

To address issues that do not require attention, run:
  npm audit fix

To address all issues possible (including breaking changes), run:
  npm audit fix --force

Some issues need review, and may require choosing
a different dependency.
github-actions[bot] commented 2 years ago 
# npm audit report

ansi-html  <0.0.8
Severity: high
Uncontrolled Resource Consumption in ansi-html - https://github.com/advisories/GHSA-whgm-jr23-g3j9
fix available via `npm audit fix --force`
Will install gatsby-remark-copy-linked-files@2.10.0, which is a breaking change
node_modules/ansi-html
  @gatsbyjs/webpack-hot-middleware  *
  Depends on vulnerable versions of ansi-html
  node_modules/@gatsbyjs/webpack-hot-middleware
    gatsby  2.3.24-ink.60 - 2.3.24-ink.61 || >=2.6.0-alpha.1
    Depends on vulnerable versions of @gatsbyjs/webpack-hot-middleware
    Depends on vulnerable versions of @pmmmwh/react-refresh-webpack-plugin
    Depends on vulnerable versions of gatsby-cli
    node_modules/gatsby
      @ragaeeb/gatsby-plugin-chatwoot  *
      Depends on vulnerable versions of gatsby
      node_modules/@ragaeeb/gatsby-plugin-chatwoot
      babel-plugin-remove-graphql-queries  >=2.17.0-next.0
      Depends on vulnerable versions of gatsby
      node_modules/babel-plugin-remove-graphql-queries
      gatsby-plugin-feed  >=2.14.0-next.0
      Depends on vulnerable versions of gatsby
      node_modules/gatsby-plugin-feed
      gatsby-plugin-manifest  >=2.13.0-next.0
      Depends on vulnerable versions of gatsby
      node_modules/gatsby-plugin-manifest
      gatsby-plugin-offline  >=3.11.0-next.0
      Depends on vulnerable versions of gatsby
      node_modules/gatsby-plugin-offline
      gatsby-plugin-page-creator  >=2.11.0-next.0
      Depends on vulnerable versions of gatsby
      Depends on vulnerable versions of gatsby-plugin-utils
      node_modules/gatsby-plugin-page-creator
      gatsby-plugin-preact  >=4.8.0-next.0
      Depends on vulnerable versions of @gatsbyjs/webpack-hot-middleware
      Depends on vulnerable versions of gatsby
      node_modules/gatsby-plugin-preact
      gatsby-plugin-react-helmet  >=3.11.0-next.0
      Depends on vulnerable versions of gatsby
      node_modules/gatsby-plugin-react-helmet
      gatsby-plugin-sass  >=3.3.0-next.0
      Depends on vulnerable versions of gatsby
      node_modules/gatsby-plugin-sass
      gatsby-plugin-sharp  >=2.0.31
      Depends on vulnerable versions of gatsby
      Depends on vulnerable versions of gatsby-plugin-utils
      Depends on vulnerable versions of svgo
      node_modules/gatsby-plugin-sharp
        gatsby-remark-images  1.6.0-alpha.03b9df85 - 2.0.0-alpha.23 || 2.1.0-alpha.80a21f04 - 2.1.0-alpha.e328d33f || >=3.12.0-next.0
        Depends on vulnerable versions of gatsby
        Depends on vulnerable versions of gatsby-plugin-sharp
        node_modules/gatsby-remark-images
        gatsby-transformer-sharp  >=2.13.0-next.0
        Depends on vulnerable versions of gatsby
        Depends on vulnerable versions of gatsby-plugin-sharp
        node_modules/gatsby-transformer-sharp
      gatsby-plugin-sitemap  >=2.13.0-next.0
      Depends on vulnerable versions of gatsby
      node_modules/gatsby-plugin-sitemap
      gatsby-plugin-typescript  >=2.13.0-next.0
      Depends on vulnerable versions of gatsby
      node_modules/gatsby-plugin-typescript
      gatsby-plugin-utils  >=0.10.0-next.0
      Depends on vulnerable versions of gatsby
      node_modules/gatsby-plugin-utils
      gatsby-remark-copy-linked-files  >=2.11.0-next.0
      Depends on vulnerable versions of gatsby
      node_modules/gatsby-remark-copy-linked-files
      gatsby-remark-responsive-iframe  >=2.12.0-next.0
      Depends on vulnerable versions of gatsby
      node_modules/gatsby-remark-responsive-iframe
      gatsby-remark-smartypants  >=2.11.0-next.0
      Depends on vulnerable versions of gatsby
      node_modules/gatsby-remark-smartypants
      gatsby-source-filesystem  >=2.12.0-next.0
      Depends on vulnerable versions of gatsby
      node_modules/gatsby-source-filesystem
      gatsby-transformer-remark  *
      Depends on vulnerable versions of gatsby
      Depends on vulnerable versions of sanitize-html
      node_modules/gatsby-transformer-remark
  @pmmmwh/react-refresh-webpack-plugin  <=0.5.0-rc.6
  Depends on vulnerable versions of ansi-html
  node_modules/@pmmmwh/react-refresh-webpack-plugin

ansi-regex  >2.1.1 <5.0.1
Severity: moderate
 Inefficient Regular Expression Complexity in chalk/ansi-regex - https://github.com/advisories/GHSA-93q8-gq69-wqmw
fix available via `npm audit fix --force`
Will install gatsby-cli@2.5.15, which is a breaking change
node_modules/yurnalist/node_modules/ansi-regex
  strip-ansi  4.0.0 - 5.2.0
  Depends on vulnerable versions of ansi-regex
  node_modules/yurnalist/node_modules/strip-ansi
    yurnalist  >=1.0.5
    Depends on vulnerable versions of strip-ansi
    node_modules/yurnalist
      gatsby-cli  2.5.9-ink.60 - 2.5.9-ink.61 || >=2.6.0-0
      Depends on vulnerable versions of yurnalist
      node_modules/gatsby-cli
        gatsby  2.3.24-ink.60 - 2.3.24-ink.61 || >=2.6.0-alpha.1
        Depends on vulnerable versions of @gatsbyjs/webpack-hot-middleware
        Depends on vulnerable versions of @pmmmwh/react-refresh-webpack-plugin
        Depends on vulnerable versions of gatsby-cli
        node_modules/gatsby
          @ragaeeb/gatsby-plugin-chatwoot  *
          Depends on vulnerable versions of gatsby
          node_modules/@ragaeeb/gatsby-plugin-chatwoot
          babel-plugin-remove-graphql-queries  >=2.17.0-next.0
          Depends on vulnerable versions of gatsby
          node_modules/babel-plugin-remove-graphql-queries
          gatsby-plugin-feed  >=2.14.0-next.0
          Depends on vulnerable versions of gatsby
          node_modules/gatsby-plugin-feed
          gatsby-plugin-manifest  >=2.13.0-next.0
          Depends on vulnerable versions of gatsby
          node_modules/gatsby-plugin-manifest
          gatsby-plugin-offline  >=3.11.0-next.0
          Depends on vulnerable versions of gatsby
          node_modules/gatsby-plugin-offline
          gatsby-plugin-page-creator  >=2.11.0-next.0
          Depends on vulnerable versions of gatsby
          Depends on vulnerable versions of gatsby-plugin-utils
          node_modules/gatsby-plugin-page-creator
          gatsby-plugin-preact  >=4.8.0-next.0
          Depends on vulnerable versions of @gatsbyjs/webpack-hot-middleware
          Depends on vulnerable versions of gatsby
          node_modules/gatsby-plugin-preact
          gatsby-plugin-react-helmet  >=3.11.0-next.0
          Depends on vulnerable versions of gatsby
          node_modules/gatsby-plugin-react-helmet
          gatsby-plugin-sass  >=3.3.0-next.0
          Depends on vulnerable versions of gatsby
          node_modules/gatsby-plugin-sass
          gatsby-plugin-sharp  >=2.0.31
          Depends on vulnerable versions of gatsby
          Depends on vulnerable versions of gatsby-plugin-utils
          Depends on vulnerable versions of svgo
          node_modules/gatsby-plugin-sharp
            gatsby-remark-images  1.6.0-alpha.03b9df85 - 2.0.0-alpha.23 || 2.1.0-alpha.80a21f04 - 2.1.0-alpha.e328d33f || >=3.12.0-next.0
            Depends on vulnerable versions of gatsby
            Depends on vulnerable versions of gatsby-plugin-sharp
            node_modules/gatsby-remark-images
            gatsby-transformer-sharp  >=2.13.0-next.0
            Depends on vulnerable versions of gatsby
            Depends on vulnerable versions of gatsby-plugin-sharp
            node_modules/gatsby-transformer-sharp
          gatsby-plugin-sitemap  >=2.13.0-next.0
          Depends on vulnerable versions of gatsby
          node_modules/gatsby-plugin-sitemap
          gatsby-plugin-typescript  >=2.13.0-next.0
          Depends on vulnerable versions of gatsby
          node_modules/gatsby-plugin-typescript
          gatsby-plugin-utils  >=0.10.0-next.0
          Depends on vulnerable versions of gatsby
          node_modules/gatsby-plugin-utils
          gatsby-remark-copy-linked-files  >=2.11.0-next.0
          Depends on vulnerable versions of gatsby
          node_modules/gatsby-remark-copy-linked-files
          gatsby-remark-responsive-iframe  >=2.12.0-next.0
          Depends on vulnerable versions of gatsby
          node_modules/gatsby-remark-responsive-iframe
          gatsby-remark-smartypants  >=2.11.0-next.0
          Depends on vulnerable versions of gatsby
          node_modules/gatsby-remark-smartypants
          gatsby-source-filesystem  >=2.12.0-next.0
          Depends on vulnerable versions of gatsby
          node_modules/gatsby-source-filesystem
          gatsby-transformer-remark  *
          Depends on vulnerable versions of gatsby
          Depends on vulnerable versions of sanitize-html
          node_modules/gatsby-transformer-remark

follow-redirects  <1.14.8
Severity: moderate
Exposure of Sensitive Information to an Unauthorized Actor in follow-redirects - https://github.com/advisories/GHSA-pw2r-vq6v-hr8c
fix available via `npm audit fix`
node_modules/follow-redirects

node-fetch  <2.6.7
Severity: high
node-fetch is vulnerable to Exposure of Sensitive Information to an Unauthorized Actor - https://github.com/advisories/GHSA-r683-j2x4-v87g
fix available via `npm audit fix`
node_modules/cross-fetch/node_modules/node-fetch
  cross-fetch  <=3.1.4 || >=3.2.0-alpha.0
  Depends on vulnerable versions of node-fetch
  node_modules/cross-fetch
    @graphql-tools/url-loader  <=7.4.3-alpha-9f8b9c45.0
    Depends on vulnerable versions of cross-fetch
    node_modules/@graphql-tools/url-loader
      graphql-config  <=0.0.0-experimental-feb71d0.7ba || 3.0.3 - 3.3.0 || 3.4.1
      Depends on vulnerable versions of @graphql-tools/url-loader
      node_modules/graphql-config

nth-check  <2.0.1
Severity: moderate
Inefficient Regular Expression Complexity in nth-check - https://github.com/advisories/GHSA-rp65-9cf3-cjxr
fix available via `npm audit fix --force`
Will install gatsby-plugin-sharp@2.14.4, which is a breaking change
node_modules/svgo/node_modules/nth-check
  css-select  <=3.1.0
  Depends on vulnerable versions of nth-check
  node_modules/svgo/node_modules/css-select
    svgo  1.0.0 - 1.3.2
    Depends on vulnerable versions of css-select
    node_modules/svgo
      gatsby-plugin-sharp  >=2.0.31
      Depends on vulnerable versions of gatsby
      Depends on vulnerable versions of gatsby-plugin-utils
      Depends on vulnerable versions of svgo
      node_modules/gatsby-plugin-sharp
        gatsby-remark-images  1.6.0-alpha.03b9df85 - 2.0.0-alpha.23 || 2.1.0-alpha.80a21f04 - 2.1.0-alpha.e328d33f || >=3.12.0-next.0
        Depends on vulnerable versions of gatsby
        Depends on vulnerable versions of gatsby-plugin-sharp
        node_modules/gatsby-remark-images
        gatsby-transformer-sharp  >=2.13.0-next.0
        Depends on vulnerable versions of gatsby
        Depends on vulnerable versions of gatsby-plugin-sharp
        node_modules/gatsby-transformer-sharp

sanitize-html  <=2.3.1
Severity: moderate
Improper Input Validation in sanitize-html - https://github.com/advisories/GHSA-rjqq-98f6-6j3r
Improper Input Validation in sanitize-html - https://github.com/advisories/GHSA-mjxr-4v3x-q3m4
No fix available
node_modules/sanitize-html
  gatsby-transformer-remark  *
  Depends on vulnerable versions of gatsby
  Depends on vulnerable versions of sanitize-html
  node_modules/gatsby-transformer-remark

simple-get  4.0.0
Severity: high
Exposure of Sensitive Information in simple-get - https://github.com/advisories/GHSA-wpg7-2c88-r8xv
fix available via `npm audit fix`
node_modules/simple-get

38 vulnerabilities (9 moderate, 29 high)

To address issues that do not require attention, run:
  npm audit fix

To address all issues possible (including breaking changes), run:
  npm audit fix --force

Some issues need review, and may require choosing
a different dependency.
github-actions[bot] commented 2 years ago 
# npm audit report

ansi-html  <0.0.8
Severity: high
Uncontrolled Resource Consumption in ansi-html - https://github.com/advisories/GHSA-whgm-jr23-g3j9
fix available via `npm audit fix --force`
Will install gatsby-plugin-feed@2.13.1, which is a breaking change
node_modules/ansi-html
  @gatsbyjs/webpack-hot-middleware  2.25.2
  Depends on vulnerable versions of ansi-html
  node_modules/@gatsbyjs/webpack-hot-middleware
  @pmmmwh/react-refresh-webpack-plugin  <=0.5.0-rc.6
  Depends on vulnerable versions of ansi-html
  node_modules/@pmmmwh/react-refresh-webpack-plugin
    gatsby  2.18.13-telemetry-test.2972 - 2.18.13-telemetry-test.2976 || >=2.19.39
    Depends on vulnerable versions of @pmmmwh/react-refresh-webpack-plugin
    Depends on vulnerable versions of babel-plugin-remove-graphql-queries
    Depends on vulnerable versions of gatsby-plugin-utils
    node_modules/gatsby
      @ragaeeb/gatsby-plugin-chatwoot  *
      Depends on vulnerable versions of gatsby
      node_modules/@ragaeeb/gatsby-plugin-chatwoot
      babel-plugin-remove-graphql-queries  >=2.17.0-next.0
      Depends on vulnerable versions of gatsby
      node_modules/babel-plugin-remove-graphql-queries
      gatsby-plugin-feed  2.5.12-dev-ssr-2.536 || >=2.5.16
      Depends on vulnerable versions of gatsby
      Depends on vulnerable versions of gatsby-plugin-utils
      node_modules/gatsby-plugin-feed
      gatsby-plugin-manifest  >=2.4.36
      Depends on vulnerable versions of gatsby
      Depends on vulnerable versions of gatsby-plugin-utils
      node_modules/gatsby-plugin-manifest
      gatsby-plugin-offline  >=3.11.0-next.0
      Depends on vulnerable versions of gatsby
      node_modules/gatsby-plugin-offline
      gatsby-plugin-page-creator  >=2.11.0-next.0
      Depends on vulnerable versions of gatsby
      Depends on vulnerable versions of gatsby-plugin-utils
      node_modules/gatsby-plugin-page-creator
      gatsby-plugin-preact  >=4.8.0-next.0
      Depends on vulnerable versions of gatsby
      node_modules/gatsby-plugin-preact
      gatsby-plugin-react-helmet  >=3.11.0-next.0
      Depends on vulnerable versions of gatsby
      node_modules/gatsby-plugin-react-helmet
      gatsby-plugin-sass  >=3.3.0-next.0
      Depends on vulnerable versions of gatsby
      node_modules/gatsby-plugin-sass
      gatsby-plugin-sharp  >=2.0.31
      Depends on vulnerable versions of gatsby
      Depends on vulnerable versions of gatsby-plugin-utils
      Depends on vulnerable versions of svgo
      node_modules/gatsby-plugin-sharp
        gatsby-remark-images  1.6.0-alpha.03b9df85 - 2.0.0-alpha.23 || 2.1.0-alpha.80a21f04 - 2.1.0-alpha.e328d33f || >=3.12.0-next.0
        Depends on vulnerable versions of gatsby
        Depends on vulnerable versions of gatsby-plugin-sharp
        node_modules/gatsby-remark-images
        gatsby-transformer-sharp  >=2.13.0-next.0
        Depends on vulnerable versions of gatsby
        Depends on vulnerable versions of gatsby-plugin-sharp
        node_modules/gatsby-transformer-sharp
      gatsby-plugin-sitemap  >=2.13.0-next.0
      Depends on vulnerable versions of gatsby
      node_modules/gatsby-plugin-sitemap
      gatsby-plugin-typescript  >=2.13.0-next.0
      Depends on vulnerable versions of gatsby
      node_modules/gatsby-plugin-typescript
      gatsby-plugin-utils  0.2.27-qod.19 - 0.2.27-qod.21 || 0.2.31-query-modules-debug-missing-sq.23 || >=0.2.35
      Depends on vulnerable versions of gatsby
      node_modules/gatsby-plugin-utils
      gatsby-remark-copy-linked-files  >=2.11.0-next.0
      Depends on vulnerable versions of gatsby
      node_modules/gatsby-remark-copy-linked-files
      gatsby-remark-responsive-iframe  >=2.12.0-next.0
      Depends on vulnerable versions of gatsby
      node_modules/gatsby-remark-responsive-iframe
      gatsby-remark-smartypants  >=2.11.0-next.0
      Depends on vulnerable versions of gatsby
      node_modules/gatsby-remark-smartypants
      gatsby-source-filesystem  >=2.12.0-next.0
      Depends on vulnerable versions of gatsby
      node_modules/gatsby-source-filesystem
      gatsby-transformer-remark  *
      Depends on vulnerable versions of gatsby
      Depends on vulnerable versions of sanitize-html
      node_modules/gatsby-transformer-remark

ansi-regex  4.0.0 - 4.1.0
Severity: moderate
 Inefficient Regular Expression Complexity in chalk/ansi-regex - https://github.com/advisories/GHSA-93q8-gq69-wqmw
fix available via `npm audit fix`
node_modules/yurnalist/node_modules/ansi-regex

follow-redirects  <1.14.8
Severity: moderate
Exposure of Sensitive Information to an Unauthorized Actor in follow-redirects - https://github.com/advisories/GHSA-pw2r-vq6v-hr8c
fix available via `npm audit fix`
node_modules/follow-redirects

minimist  <=1.2.5
Severity: high
Prototype Pollution in minimist - https://github.com/advisories/GHSA-xvch-5gv4-984h
fix available via `npm audit fix`
node_modules/minimist

node-fetch  <2.6.7
Severity: high
node-fetch is vulnerable to Exposure of Sensitive Information to an Unauthorized Actor - https://github.com/advisories/GHSA-r683-j2x4-v87g
fix available via `npm audit fix`
node_modules/cross-fetch/node_modules/node-fetch
  cross-fetch  <=3.1.4 || >=3.2.0-alpha.0
  Depends on vulnerable versions of node-fetch
  node_modules/cross-fetch
    @graphql-tools/url-loader  <=7.4.3-alpha-9f8b9c45.0
    Depends on vulnerable versions of cross-fetch
    node_modules/@graphql-tools/url-loader
      graphql-config  <=0.0.0-experimental-feb71d0.7ba || 3.0.3 - 3.3.0 || 3.4.1
      Depends on vulnerable versions of @graphql-tools/url-loader
      node_modules/graphql-config

nth-check  <2.0.1
Severity: moderate
Inefficient Regular Expression Complexity in nth-check - https://github.com/advisories/GHSA-rp65-9cf3-cjxr
fix available via `npm audit fix --force`
Will install gatsby-plugin-sharp@2.14.4, which is a breaking change
node_modules/svgo/node_modules/nth-check
  css-select  <=3.1.0
  Depends on vulnerable versions of nth-check
  node_modules/svgo/node_modules/css-select
    svgo  1.0.0 - 1.3.2
    Depends on vulnerable versions of css-select
    node_modules/svgo
      gatsby-plugin-sharp  >=2.0.31
      Depends on vulnerable versions of gatsby
      Depends on vulnerable versions of gatsby-plugin-utils
      Depends on vulnerable versions of svgo
      node_modules/gatsby-plugin-sharp
        gatsby-remark-images  1.6.0-alpha.03b9df85 - 2.0.0-alpha.23 || 2.1.0-alpha.80a21f04 - 2.1.0-alpha.e328d33f || >=3.12.0-next.0
        Depends on vulnerable versions of gatsby
        Depends on vulnerable versions of gatsby-plugin-sharp
        node_modules/gatsby-remark-images
        gatsby-transformer-sharp  >=2.13.0-next.0
        Depends on vulnerable versions of gatsby
        Depends on vulnerable versions of gatsby-plugin-sharp
        node_modules/gatsby-transformer-sharp

sanitize-html  <=2.3.1
Severity: moderate
Improper Input Validation in sanitize-html - https://github.com/advisories/GHSA-rjqq-98f6-6j3r
Improper Input Validation in sanitize-html - https://github.com/advisories/GHSA-mjxr-4v3x-q3m4
No fix available
node_modules/sanitize-html
  gatsby-transformer-remark  *
  Depends on vulnerable versions of gatsby
  Depends on vulnerable versions of sanitize-html
  node_modules/gatsby-transformer-remark

simple-get  4.0.0
Severity: high
Exposure of Sensitive Information in simple-get - https://github.com/advisories/GHSA-wpg7-2c88-r8xv
fix available via `npm audit fix`
node_modules/simple-get

36 vulnerabilities (6 moderate, 30 high)

To address issues that do not require attention, run:
  npm audit fix

To address all issues possible (including breaking changes), run:
  npm audit fix --force

Some issues need review, and may require choosing
a different dependency.
github-actions[bot] commented 2 years ago 
# npm audit report

ansi-html  <0.0.8
Severity: high
Uncontrolled Resource Consumption in ansi-html - https://github.com/advisories/GHSA-whgm-jr23-g3j9
fix available via `npm audit fix --force`
Will install gatsby-plugin-feed@2.13.1, which is a breaking change
node_modules/ansi-html
  @pmmmwh/react-refresh-webpack-plugin  <=0.5.0-rc.6
  Depends on vulnerable versions of ansi-html
  node_modules/@pmmmwh/react-refresh-webpack-plugin
    gatsby  2.18.13-telemetry-test.2972 - 2.18.13-telemetry-test.2976 || >=2.19.39
    Depends on vulnerable versions of @pmmmwh/react-refresh-webpack-plugin
    Depends on vulnerable versions of babel-plugin-remove-graphql-queries
    Depends on vulnerable versions of gatsby-plugin-utils
    node_modules/gatsby
      @ragaeeb/gatsby-plugin-chatwoot  *
      Depends on vulnerable versions of gatsby
      node_modules/@ragaeeb/gatsby-plugin-chatwoot
      babel-plugin-remove-graphql-queries  >=2.17.0-next.0
      Depends on vulnerable versions of gatsby
      node_modules/babel-plugin-remove-graphql-queries
      gatsby-plugin-feed  2.5.12-dev-ssr-2.536 || >=2.5.16
      Depends on vulnerable versions of gatsby
      Depends on vulnerable versions of gatsby-plugin-utils
      node_modules/gatsby-plugin-feed
      gatsby-plugin-manifest  >=2.4.36
      Depends on vulnerable versions of gatsby
      Depends on vulnerable versions of gatsby-plugin-utils
      node_modules/gatsby-plugin-manifest
      gatsby-plugin-offline  >=3.11.0-next.0
      Depends on vulnerable versions of gatsby
      node_modules/gatsby-plugin-offline
      gatsby-plugin-page-creator  >=2.11.0-next.0
      Depends on vulnerable versions of gatsby
      Depends on vulnerable versions of gatsby-plugin-utils
      node_modules/gatsby-plugin-page-creator
      gatsby-plugin-preact  >=4.8.0-next.0
      Depends on vulnerable versions of gatsby
      node_modules/gatsby-plugin-preact
      gatsby-plugin-react-helmet  >=3.11.0-next.0
      Depends on vulnerable versions of gatsby
      node_modules/gatsby-plugin-react-helmet
      gatsby-plugin-sass  >=3.3.0-next.0
      Depends on vulnerable versions of gatsby
      node_modules/gatsby-plugin-sass
      gatsby-plugin-sharp  >=2.0.31
      Depends on vulnerable versions of gatsby
      Depends on vulnerable versions of gatsby-plugin-utils
      Depends on vulnerable versions of svgo
      node_modules/gatsby-plugin-sharp
        gatsby-remark-images  1.6.0-alpha.03b9df85 - 2.0.0-alpha.23 || 2.1.0-alpha.80a21f04 - 2.1.0-alpha.e328d33f || >=3.12.0-next.0
        Depends on vulnerable versions of gatsby
        Depends on vulnerable versions of gatsby-plugin-sharp
        node_modules/gatsby-remark-images
        gatsby-transformer-sharp  >=2.13.0-next.0
        Depends on vulnerable versions of gatsby
        Depends on vulnerable versions of gatsby-plugin-sharp
        node_modules/gatsby-transformer-sharp
      gatsby-plugin-sitemap  >=2.13.0-next.0
      Depends on vulnerable versions of gatsby
      node_modules/gatsby-plugin-sitemap
      gatsby-plugin-typescript  >=2.13.0-next.0
      Depends on vulnerable versions of gatsby
      node_modules/gatsby-plugin-typescript
      gatsby-plugin-utils  0.2.27-qod.19 - 0.2.27-qod.21 || 0.2.31-query-modules-debug-missing-sq.23 || >=0.2.35
      Depends on vulnerable versions of gatsby
      node_modules/gatsby-plugin-utils
      gatsby-remark-copy-linked-files  >=2.11.0-next.0
      Depends on vulnerable versions of gatsby
      node_modules/gatsby-remark-copy-linked-files
      gatsby-remark-responsive-iframe  >=2.12.0-next.0
      Depends on vulnerable versions of gatsby
      node_modules/gatsby-remark-responsive-iframe
      gatsby-remark-smartypants  >=2.11.0-next.0
      Depends on vulnerable versions of gatsby
      node_modules/gatsby-remark-smartypants
      gatsby-source-filesystem  >=2.12.0-next.0
      Depends on vulnerable versions of gatsby
      node_modules/gatsby-source-filesystem
      gatsby-transformer-remark  *
      Depends on vulnerable versions of gatsby
      Depends on vulnerable versions of sanitize-html
      node_modules/gatsby-transformer-remark

node-fetch  <2.6.7
Severity: high
node-fetch is vulnerable to Exposure of Sensitive Information to an Unauthorized Actor - https://github.com/advisories/GHSA-r683-j2x4-v87g
fix available via `npm audit fix`
node_modules/cross-fetch/node_modules/node-fetch
  cross-fetch  <=3.1.4 || >=3.2.0-alpha.0
  Depends on vulnerable versions of node-fetch
  node_modules/cross-fetch
    @graphql-tools/url-loader  <=7.4.3-alpha-9f8b9c45.0
    Depends on vulnerable versions of cross-fetch
    node_modules/@graphql-tools/url-loader
      graphql-config  <=0.0.0-experimental-feb71d0.7ba || 3.0.3 - 3.3.0 || 3.4.1
      Depends on vulnerable versions of @graphql-tools/url-loader
      node_modules/graphql-config

nth-check  <2.0.1
Severity: moderate
Inefficient Regular Expression Complexity in nth-check - https://github.com/advisories/GHSA-rp65-9cf3-cjxr
fix available via `npm audit fix --force`
Will install gatsby-plugin-sharp@2.14.4, which is a breaking change
node_modules/svgo/node_modules/nth-check
  css-select  <=3.1.0
  Depends on vulnerable versions of nth-check
  node_modules/svgo/node_modules/css-select
    svgo  1.0.0 - 1.3.2
    Depends on vulnerable versions of css-select
    node_modules/svgo
      gatsby-plugin-sharp  >=2.0.31
      Depends on vulnerable versions of gatsby
      Depends on vulnerable versions of gatsby-plugin-utils
      Depends on vulnerable versions of svgo
      node_modules/gatsby-plugin-sharp
        gatsby-remark-images  1.6.0-alpha.03b9df85 - 2.0.0-alpha.23 || 2.1.0-alpha.80a21f04 - 2.1.0-alpha.e328d33f || >=3.12.0-next.0
        Depends on vulnerable versions of gatsby
        Depends on vulnerable versions of gatsby-plugin-sharp
        node_modules/gatsby-remark-images
        gatsby-transformer-sharp  >=2.13.0-next.0
        Depends on vulnerable versions of gatsby
        Depends on vulnerable versions of gatsby-plugin-sharp
        node_modules/gatsby-transformer-sharp

sanitize-html  <=2.3.1
Severity: moderate
Improper Input Validation in sanitize-html - https://github.com/advisories/GHSA-rjqq-98f6-6j3r
Improper Input Validation in sanitize-html - https://github.com/advisories/GHSA-mjxr-4v3x-q3m4
No fix available
node_modules/sanitize-html
  gatsby-transformer-remark  *
  Depends on vulnerable versions of gatsby
  Depends on vulnerable versions of sanitize-html
  node_modules/gatsby-transformer-remark

31 vulnerabilities (4 moderate, 27 high)

To address issues that do not require attention, run:
  npm audit fix

To address all issues possible (including breaking changes), run:
  npm audit fix --force

Some issues need review, and may require choosing
a different dependency.
github-actions[bot] commented 2 years ago 
# npm audit report

ansi-html  <0.0.8
Severity: high
Uncontrolled Resource Consumption in ansi-html - https://github.com/advisories/GHSA-whgm-jr23-g3j9
fix available via `npm audit fix --force`
Will install gatsby-plugin-feed@2.13.1, which is a breaking change
node_modules/ansi-html
  @pmmmwh/react-refresh-webpack-plugin  <=0.5.0-rc.6
  Depends on vulnerable versions of ansi-html
  node_modules/@pmmmwh/react-refresh-webpack-plugin
    gatsby  2.18.13-telemetry-test.2972 - 2.18.13-telemetry-test.2976 || >=2.19.39
    Depends on vulnerable versions of @pmmmwh/react-refresh-webpack-plugin
    Depends on vulnerable versions of babel-plugin-remove-graphql-queries
    Depends on vulnerable versions of gatsby-plugin-utils
    node_modules/gatsby
      @ragaeeb/gatsby-plugin-chatwoot  *
      Depends on vulnerable versions of gatsby
      node_modules/@ragaeeb/gatsby-plugin-chatwoot
      babel-plugin-remove-graphql-queries  >=2.17.0-next.0
      Depends on vulnerable versions of gatsby
      node_modules/babel-plugin-remove-graphql-queries
      gatsby-plugin-feed  2.5.12-dev-ssr-2.536 || >=2.5.16
      Depends on vulnerable versions of gatsby
      Depends on vulnerable versions of gatsby-plugin-utils
      node_modules/gatsby-plugin-feed
      gatsby-plugin-manifest  >=2.4.36
      Depends on vulnerable versions of gatsby
      Depends on vulnerable versions of gatsby-plugin-utils
      node_modules/gatsby-plugin-manifest
      gatsby-plugin-offline  >=3.11.0-next.0
      Depends on vulnerable versions of gatsby
      node_modules/gatsby-plugin-offline
      gatsby-plugin-page-creator  >=2.11.0-next.0
      Depends on vulnerable versions of gatsby
      Depends on vulnerable versions of gatsby-plugin-utils
      node_modules/gatsby-plugin-page-creator
      gatsby-plugin-preact  >=4.8.0-next.0
      Depends on vulnerable versions of gatsby
      node_modules/gatsby-plugin-preact
      gatsby-plugin-react-helmet  >=3.11.0-next.0
      Depends on vulnerable versions of gatsby
      node_modules/gatsby-plugin-react-helmet
      gatsby-plugin-sass  >=3.3.0-next.0
      Depends on vulnerable versions of gatsby
      node_modules/gatsby-plugin-sass
      gatsby-plugin-sharp  >=2.0.31
      Depends on vulnerable versions of gatsby
      Depends on vulnerable versions of gatsby-plugin-utils
      Depends on vulnerable versions of svgo
      node_modules/gatsby-plugin-sharp
        gatsby-remark-images  1.6.0-alpha.03b9df85 - 2.0.0-alpha.23 || 2.1.0-alpha.80a21f04 - 2.1.0-alpha.e328d33f || >=3.12.0-next.0
        Depends on vulnerable versions of gatsby
        Depends on vulnerable versions of gatsby-plugin-sharp
        node_modules/gatsby-remark-images
        gatsby-transformer-sharp  >=2.13.0-next.0
        Depends on vulnerable versions of gatsby
        Depends on vulnerable versions of gatsby-plugin-sharp
        node_modules/gatsby-transformer-sharp
      gatsby-plugin-sitemap  >=2.13.0-next.0
      Depends on vulnerable versions of gatsby
      node_modules/gatsby-plugin-sitemap
      gatsby-plugin-typescript  >=2.13.0-next.0
      Depends on vulnerable versions of gatsby
      node_modules/gatsby-plugin-typescript
      gatsby-plugin-utils  0.2.27-qod.19 - 0.2.27-qod.21 || 0.2.31-query-modules-debug-missing-sq.23 || >=0.2.35
      Depends on vulnerable versions of gatsby
      node_modules/gatsby-plugin-utils
      gatsby-remark-copy-linked-files  >=2.11.0-next.0
      Depends on vulnerable versions of gatsby
      node_modules/gatsby-remark-copy-linked-files
      gatsby-remark-responsive-iframe  >=2.12.0-next.0
      Depends on vulnerable versions of gatsby
      node_modules/gatsby-remark-responsive-iframe
      gatsby-remark-smartypants  >=2.11.0-next.0
      Depends on vulnerable versions of gatsby
      node_modules/gatsby-remark-smartypants
      gatsby-source-filesystem  >=2.12.0-next.0
      Depends on vulnerable versions of gatsby
      node_modules/gatsby-source-filesystem
      gatsby-transformer-remark  *
      Depends on vulnerable versions of gatsby
      Depends on vulnerable versions of sanitize-html
      node_modules/gatsby-transformer-remark

node-fetch  <2.6.7
Severity: high
node-fetch is vulnerable to Exposure of Sensitive Information to an Unauthorized Actor - https://github.com/advisories/GHSA-r683-j2x4-v87g
fix available via `npm audit fix`
node_modules/cross-fetch/node_modules/node-fetch
  cross-fetch  <=3.1.4 || >=3.2.0-alpha.0
  Depends on vulnerable versions of node-fetch
  node_modules/cross-fetch
    @graphql-tools/url-loader  <=7.4.3-alpha-9f8b9c45.0
    Depends on vulnerable versions of cross-fetch
    node_modules/@graphql-tools/url-loader
      graphql-config  <=0.0.0-experimental-feb71d0.7ba || 3.0.3 - 3.3.0 || 3.4.1
      Depends on vulnerable versions of @graphql-tools/url-loader
      node_modules/graphql-config

nth-check  <2.0.1
Severity: moderate
Inefficient Regular Expression Complexity in nth-check - https://github.com/advisories/GHSA-rp65-9cf3-cjxr
fix available via `npm audit fix --force`
Will install gatsby-plugin-sharp@2.14.4, which is a breaking change
node_modules/svgo/node_modules/nth-check
  css-select  <=3.1.0
  Depends on vulnerable versions of nth-check
  node_modules/svgo/node_modules/css-select
    svgo  1.0.0 - 1.3.2
    Depends on vulnerable versions of css-select
    node_modules/svgo
      gatsby-plugin-sharp  >=2.0.31
      Depends on vulnerable versions of gatsby
      Depends on vulnerable versions of gatsby-plugin-utils
      Depends on vulnerable versions of svgo
      node_modules/gatsby-plugin-sharp
        gatsby-remark-images  1.6.0-alpha.03b9df85 - 2.0.0-alpha.23 || 2.1.0-alpha.80a21f04 - 2.1.0-alpha.e328d33f || >=3.12.0-next.0
        Depends on vulnerable versions of gatsby
        Depends on vulnerable versions of gatsby-plugin-sharp
        node_modules/gatsby-remark-images
        gatsby-transformer-sharp  >=2.13.0-next.0
        Depends on vulnerable versions of gatsby
        Depends on vulnerable versions of gatsby-plugin-sharp
        node_modules/gatsby-transformer-sharp

sanitize-html  <=2.3.1
Severity: moderate
Improper Input Validation in sanitize-html - https://github.com/advisories/GHSA-rjqq-98f6-6j3r
Improper Input Validation in sanitize-html - https://github.com/advisories/GHSA-mjxr-4v3x-q3m4
No fix available
node_modules/sanitize-html
  gatsby-transformer-remark  *
  Depends on vulnerable versions of gatsby
  Depends on vulnerable versions of sanitize-html
  node_modules/gatsby-transformer-remark

31 vulnerabilities (4 moderate, 27 high)

To address issues that do not require attention, run:
  npm audit fix

To address all issues possible (including breaking changes), run:
  npm audit fix --force

Some issues need review, and may require choosing
a different dependency.
github-actions[bot] commented 2 years ago 
# npm audit report

ansi-html  <0.0.8
Severity: high
Uncontrolled Resource Consumption in ansi-html - https://github.com/advisories/GHSA-whgm-jr23-g3j9
fix available via `npm audit fix --force`
Will install gatsby-plugin-feed@2.13.1, which is a breaking change
node_modules/ansi-html
  @pmmmwh/react-refresh-webpack-plugin  <=0.5.0-rc.6
  Depends on vulnerable versions of ansi-html
  node_modules/@pmmmwh/react-refresh-webpack-plugin
    gatsby  2.18.13-telemetry-test.2972 - 2.18.13-telemetry-test.2976 || >=2.19.39
    Depends on vulnerable versions of @pmmmwh/react-refresh-webpack-plugin
    Depends on vulnerable versions of babel-plugin-remove-graphql-queries
    Depends on vulnerable versions of gatsby-plugin-utils
    node_modules/gatsby
      @ragaeeb/gatsby-plugin-chatwoot  *
      Depends on vulnerable versions of gatsby
      node_modules/@ragaeeb/gatsby-plugin-chatwoot
      babel-plugin-remove-graphql-queries  >=2.17.0-next.0
      Depends on vulnerable versions of gatsby
      node_modules/babel-plugin-remove-graphql-queries
      gatsby-plugin-feed  2.5.12-dev-ssr-2.536 || >=2.5.16
      Depends on vulnerable versions of gatsby
      Depends on vulnerable versions of gatsby-plugin-utils
      node_modules/gatsby-plugin-feed
      gatsby-plugin-manifest  >=2.4.36
      Depends on vulnerable versions of gatsby
      Depends on vulnerable versions of gatsby-plugin-utils
      node_modules/gatsby-plugin-manifest
      gatsby-plugin-offline  >=3.11.0-next.0
      Depends on vulnerable versions of gatsby
      node_modules/gatsby-plugin-offline
      gatsby-plugin-page-creator  >=2.11.0-next.0
      Depends on vulnerable versions of gatsby
      Depends on vulnerable versions of gatsby-plugin-utils
      node_modules/gatsby-plugin-page-creator
      gatsby-plugin-preact  >=4.8.0-next.0
      Depends on vulnerable versions of gatsby
      node_modules/gatsby-plugin-preact
      gatsby-plugin-react-helmet  >=3.11.0-next.0
      Depends on vulnerable versions of gatsby
      node_modules/gatsby-plugin-react-helmet
      gatsby-plugin-sass  >=3.3.0-next.0
      Depends on vulnerable versions of gatsby
      node_modules/gatsby-plugin-sass
      gatsby-plugin-sharp  >=2.0.31
      Depends on vulnerable versions of gatsby
      Depends on vulnerable versions of gatsby-plugin-utils
      Depends on vulnerable versions of svgo
      node_modules/gatsby-plugin-sharp
        gatsby-remark-images  1.6.0-alpha.03b9df85 - 2.0.0-alpha.23 || 2.1.0-alpha.80a21f04 - 2.1.0-alpha.e328d33f || >=3.12.0-next.0
        Depends on vulnerable versions of gatsby
        Depends on vulnerable versions of gatsby-plugin-sharp
        node_modules/gatsby-remark-images
        gatsby-transformer-sharp  >=2.13.0-next.0
        Depends on vulnerable versions of gatsby
        Depends on vulnerable versions of gatsby-plugin-sharp
        node_modules/gatsby-transformer-sharp
      gatsby-plugin-sitemap  >=2.13.0-next.0
      Depends on vulnerable versions of gatsby
      node_modules/gatsby-plugin-sitemap
      gatsby-plugin-typescript  >=2.13.0-next.0
      Depends on vulnerable versions of gatsby
      node_modules/gatsby-plugin-typescript
      gatsby-plugin-utils  0.2.27-qod.19 - 0.2.27-qod.21 || 0.2.31-query-modules-debug-missing-sq.23 || >=0.2.35
      Depends on vulnerable versions of gatsby
      node_modules/gatsby-plugin-utils
      gatsby-remark-copy-linked-files  >=2.11.0-next.0
      Depends on vulnerable versions of gatsby
      node_modules/gatsby-remark-copy-linked-files
      gatsby-remark-responsive-iframe  >=2.12.0-next.0
      Depends on vulnerable versions of gatsby
      node_modules/gatsby-remark-responsive-iframe
      gatsby-remark-smartypants  >=2.11.0-next.0
      Depends on vulnerable versions of gatsby
      node_modules/gatsby-remark-smartypants
      gatsby-source-filesystem  >=2.12.0-next.0
      Depends on vulnerable versions of gatsby
      node_modules/gatsby-source-filesystem
      gatsby-transformer-remark  *
      Depends on vulnerable versions of gatsby
      Depends on vulnerable versions of sanitize-html
      node_modules/gatsby-transformer-remark

moment  <2.29.2
Severity: high
Path Traversal: 'dir/../../filename' in moment.locale - https://github.com/advisories/GHSA-8hfj-j24r-96c4
fix available via `npm audit fix`
node_modules/moment

node-fetch  <2.6.7
Severity: high
node-fetch is vulnerable to Exposure of Sensitive Information to an Unauthorized Actor - https://github.com/advisories/GHSA-r683-j2x4-v87g
fix available via `npm audit fix`
node_modules/cross-fetch/node_modules/node-fetch
  cross-fetch  <=2.2.3 || 2.2.5 || 3.0.0 - 3.1.4 || >=3.2.0-alpha.0
  Depends on vulnerable versions of node-fetch
  node_modules/cross-fetch
    @graphql-tools/url-loader  <=7.4.3-alpha-9f8b9c45.0
    Depends on vulnerable versions of cross-fetch
    node_modules/@graphql-tools/url-loader
      graphql-config  <=0.0.0-experimental-feb71d0.7ba || 3.0.3 - 3.3.0 || 3.4.1
      Depends on vulnerable versions of @graphql-tools/url-loader
      node_modules/graphql-config

nth-check  <2.0.1
Severity: moderate
Inefficient Regular Expression Complexity in nth-check - https://github.com/advisories/GHSA-rp65-9cf3-cjxr
fix available via `npm audit fix --force`
Will install gatsby-plugin-sharp@2.14.4, which is a breaking change
node_modules/svgo/node_modules/nth-check
  css-select  <=3.1.0
  Depends on vulnerable versions of nth-check
  node_modules/svgo/node_modules/css-select
    svgo  1.0.0 - 1.3.2
    Depends on vulnerable versions of css-select
    node_modules/svgo
      gatsby-plugin-sharp  >=2.0.31
      Depends on vulnerable versions of gatsby
      Depends on vulnerable versions of gatsby-plugin-utils
      Depends on vulnerable versions of svgo
      node_modules/gatsby-plugin-sharp
        gatsby-remark-images  1.6.0-alpha.03b9df85 - 2.0.0-alpha.23 || 2.1.0-alpha.80a21f04 - 2.1.0-alpha.e328d33f || >=3.12.0-next.0
        Depends on vulnerable versions of gatsby
        Depends on vulnerable versions of gatsby-plugin-sharp
        node_modules/gatsby-remark-images
        gatsby-transformer-sharp  >=2.13.0-next.0
        Depends on vulnerable versions of gatsby
        Depends on vulnerable versions of gatsby-plugin-sharp
        node_modules/gatsby-transformer-sharp

sanitize-html  <=2.3.1
Severity: moderate
Improper Input Validation in sanitize-html - https://github.com/advisories/GHSA-rjqq-98f6-6j3r
Improper Input Validation in sanitize-html - https://github.com/advisories/GHSA-mjxr-4v3x-q3m4
No fix available
node_modules/sanitize-html
  gatsby-transformer-remark  *
  Depends on vulnerable versions of gatsby
  Depends on vulnerable versions of sanitize-html
  node_modules/gatsby-transformer-remark

32 vulnerabilities (4 moderate, 28 high)

To address issues that do not require attention, run:
  npm audit fix

To address all issues possible (including breaking changes), run:
  npm audit fix --force

Some issues need review, and may require choosing
a different dependency.
github-actions[bot] commented 2 years ago 
# npm audit report

ansi-html  <0.0.8
Severity: high
Uncontrolled Resource Consumption in ansi-html - https://github.com/advisories/GHSA-whgm-jr23-g3j9
fix available via `npm audit fix --force`
Will install gatsby-plugin-feed@2.13.1, which is a breaking change
node_modules/ansi-html
  @pmmmwh/react-refresh-webpack-plugin  <=0.5.0-rc.6
  Depends on vulnerable versions of ansi-html
  node_modules/@pmmmwh/react-refresh-webpack-plugin
    gatsby  >=2.0.18
    Depends on vulnerable versions of @pmmmwh/react-refresh-webpack-plugin
    Depends on vulnerable versions of babel-plugin-remove-graphql-queries
    Depends on vulnerable versions of cache-manager
    Depends on vulnerable versions of gatsby-plugin-utils
    node_modules/gatsby
      @ragaeeb/gatsby-plugin-chatwoot  *
      Depends on vulnerable versions of gatsby
      node_modules/@ragaeeb/gatsby-plugin-chatwoot
      babel-plugin-remove-graphql-queries  >=2.17.0-next.0
      Depends on vulnerable versions of gatsby
      node_modules/babel-plugin-remove-graphql-queries
      gatsby-plugin-feed  2.5.12-dev-ssr-2.536 || >=2.5.16
      Depends on vulnerable versions of gatsby
      Depends on vulnerable versions of gatsby-plugin-utils
      node_modules/gatsby-plugin-feed
      gatsby-plugin-manifest  >=2.4.36
      Depends on vulnerable versions of gatsby
      Depends on vulnerable versions of gatsby-plugin-utils
      node_modules/gatsby-plugin-manifest
      gatsby-plugin-offline  >=3.11.0-next.0
      Depends on vulnerable versions of gatsby
      node_modules/gatsby-plugin-offline
      gatsby-plugin-page-creator  >=2.11.0-next.0
      Depends on vulnerable versions of gatsby
      Depends on vulnerable versions of gatsby-plugin-utils
      node_modules/gatsby-plugin-page-creator
      gatsby-plugin-preact  >=4.8.0-next.0
      Depends on vulnerable versions of gatsby
      node_modules/gatsby-plugin-preact
      gatsby-plugin-react-helmet  >=3.11.0-next.0
      Depends on vulnerable versions of gatsby
      node_modules/gatsby-plugin-react-helmet
      gatsby-plugin-sass  >=3.3.0-next.0
      Depends on vulnerable versions of gatsby
      node_modules/gatsby-plugin-sass
      gatsby-plugin-sharp  >=2.0.31
      Depends on vulnerable versions of gatsby
      Depends on vulnerable versions of gatsby-plugin-utils
      Depends on vulnerable versions of svgo
      node_modules/gatsby-plugin-sharp
        gatsby-remark-images  1.6.0-alpha.03b9df85 - 2.0.0-alpha.23 || 2.1.0-alpha.80a21f04 - 2.1.0-alpha.e328d33f || >=3.12.0-next.0
        Depends on vulnerable versions of gatsby
        Depends on vulnerable versions of gatsby-plugin-sharp
        node_modules/gatsby-remark-images
        gatsby-transformer-sharp  >=2.13.0-next.0
        Depends on vulnerable versions of gatsby
        Depends on vulnerable versions of gatsby-plugin-sharp
        node_modules/gatsby-transformer-sharp
      gatsby-plugin-sitemap  >=2.13.0-next.0
      Depends on vulnerable versions of gatsby
      node_modules/gatsby-plugin-sitemap
      gatsby-plugin-typescript  >=2.13.0-next.0
      Depends on vulnerable versions of gatsby
      node_modules/gatsby-plugin-typescript
      gatsby-plugin-utils  0.2.27-qod.19 - 0.2.27-qod.21 || 0.2.31-query-modules-debug-missing-sq.23 || >=0.2.35
      Depends on vulnerable versions of gatsby
      node_modules/gatsby-plugin-utils
      gatsby-remark-copy-linked-files  >=2.11.0-next.0
      Depends on vulnerable versions of gatsby
      node_modules/gatsby-remark-copy-linked-files
      gatsby-remark-responsive-iframe  >=2.12.0-next.0
      Depends on vulnerable versions of gatsby
      node_modules/gatsby-remark-responsive-iframe
      gatsby-remark-smartypants  >=2.11.0-next.0
      Depends on vulnerable versions of gatsby
      node_modules/gatsby-remark-smartypants
      gatsby-source-filesystem  >=2.12.0-next.0
      Depends on vulnerable versions of gatsby
      node_modules/gatsby-source-filesystem
      gatsby-transformer-remark  *
      Depends on vulnerable versions of gatsby
      Depends on vulnerable versions of sanitize-html
      node_modules/gatsby-transformer-remark

async  <3.2.2
Severity: high
Prototype Pollution in async - https://github.com/advisories/GHSA-fwr7-v2mv-hh25
fix available via `npm audit fix --force`
Will install gatsby-plugin-feed@2.13.1, which is a breaking change
node_modules/async
node_modules/gh-pages/node_modules/async
  cache-manager  0.7.0 - 3.3.0 || 3.4.1 - 3.6.0
  Depends on vulnerable versions of async
  node_modules/cache-manager
    gatsby  >=2.0.18
    Depends on vulnerable versions of @pmmmwh/react-refresh-webpack-plugin
    Depends on vulnerable versions of babel-plugin-remove-graphql-queries
    Depends on vulnerable versions of cache-manager
    Depends on vulnerable versions of gatsby-plugin-utils
    node_modules/gatsby
      @ragaeeb/gatsby-plugin-chatwoot  *
      Depends on vulnerable versions of gatsby
      node_modules/@ragaeeb/gatsby-plugin-chatwoot
      babel-plugin-remove-graphql-queries  >=2.17.0-next.0
      Depends on vulnerable versions of gatsby
      node_modules/babel-plugin-remove-graphql-queries
      gatsby-plugin-feed  2.5.12-dev-ssr-2.536 || >=2.5.16
      Depends on vulnerable versions of gatsby
      Depends on vulnerable versions of gatsby-plugin-utils
      node_modules/gatsby-plugin-feed
      gatsby-plugin-manifest  >=2.4.36
      Depends on vulnerable versions of gatsby
      Depends on vulnerable versions of gatsby-plugin-utils
      node_modules/gatsby-plugin-manifest
      gatsby-plugin-offline  >=3.11.0-next.0
      Depends on vulnerable versions of gatsby
      node_modules/gatsby-plugin-offline
      gatsby-plugin-page-creator  >=2.11.0-next.0
      Depends on vulnerable versions of gatsby
      Depends on vulnerable versions of gatsby-plugin-utils
      node_modules/gatsby-plugin-page-creator
      gatsby-plugin-preact  >=4.8.0-next.0
      Depends on vulnerable versions of gatsby
      node_modules/gatsby-plugin-preact
      gatsby-plugin-react-helmet  >=3.11.0-next.0
      Depends on vulnerable versions of gatsby
      node_modules/gatsby-plugin-react-helmet
      gatsby-plugin-sass  >=3.3.0-next.0
      Depends on vulnerable versions of gatsby
      node_modules/gatsby-plugin-sass
      gatsby-plugin-sharp  >=2.0.31
      Depends on vulnerable versions of gatsby
      Depends on vulnerable versions of gatsby-plugin-utils
      Depends on vulnerable versions of svgo
      node_modules/gatsby-plugin-sharp
        gatsby-remark-images  1.6.0-alpha.03b9df85 - 2.0.0-alpha.23 || 2.1.0-alpha.80a21f04 - 2.1.0-alpha.e328d33f || >=3.12.0-next.0
        Depends on vulnerable versions of gatsby
        Depends on vulnerable versions of gatsby-plugin-sharp
        node_modules/gatsby-remark-images
        gatsby-transformer-sharp  >=2.13.0-next.0
        Depends on vulnerable versions of gatsby
        Depends on vulnerable versions of gatsby-plugin-sharp
        node_modules/gatsby-transformer-sharp
      gatsby-plugin-sitemap  >=2.13.0-next.0
      Depends on vulnerable versions of gatsby
      node_modules/gatsby-plugin-sitemap
      gatsby-plugin-typescript  >=2.13.0-next.0
      Depends on vulnerable versions of gatsby
      node_modules/gatsby-plugin-typescript
      gatsby-plugin-utils  0.2.27-qod.19 - 0.2.27-qod.21 || 0.2.31-query-modules-debug-missing-sq.23 || >=0.2.35
      Depends on vulnerable versions of gatsby
      node_modules/gatsby-plugin-utils
      gatsby-remark-copy-linked-files  >=2.11.0-next.0
      Depends on vulnerable versions of gatsby
      node_modules/gatsby-remark-copy-linked-files
      gatsby-remark-responsive-iframe  >=2.12.0-next.0
      Depends on vulnerable versions of gatsby
      node_modules/gatsby-remark-responsive-iframe
      gatsby-remark-smartypants  >=2.11.0-next.0
      Depends on vulnerable versions of gatsby
      node_modules/gatsby-remark-smartypants
      gatsby-source-filesystem  >=2.12.0-next.0
      Depends on vulnerable versions of gatsby
      node_modules/gatsby-source-filesystem
      gatsby-transformer-remark  *
      Depends on vulnerable versions of gatsby
      Depends on vulnerable versions of sanitize-html
      node_modules/gatsby-transformer-remark
  gh-pages  >=0.2.0
  Depends on vulnerable versions of async
  node_modules/gh-pages

moment  <2.29.2
Severity: high
Path Traversal: 'dir/../../filename' in moment.locale - https://github.com/advisories/GHSA-8hfj-j24r-96c4
fix available via `npm audit fix`
node_modules/moment

node-fetch  <2.6.7
Severity: high
node-fetch is vulnerable to Exposure of Sensitive Information to an Unauthorized Actor - https://github.com/advisories/GHSA-r683-j2x4-v87g
fix available via `npm audit fix`
node_modules/cross-fetch/node_modules/node-fetch
  cross-fetch  <=2.2.3 || 2.2.5 || 3.0.0 - 3.1.4 || >=3.2.0-alpha.0
  Depends on vulnerable versions of node-fetch
  node_modules/cross-fetch
    @graphql-tools/url-loader  <=7.4.3-alpha-9f8b9c45.0
    Depends on vulnerable versions of cross-fetch
    node_modules/@graphql-tools/url-loader
      graphql-config  <=0.0.0-experimental-feb71d0.7ba || 3.0.3 - 3.3.0 || 3.4.1
      Depends on vulnerable versions of @graphql-tools/url-loader
      node_modules/graphql-config

nth-check  <2.0.1
Severity: moderate
Inefficient Regular Expression Complexity in nth-check - https://github.com/advisories/GHSA-rp65-9cf3-cjxr
fix available via `npm audit fix --force`
Will install gatsby-plugin-sharp@2.14.4, which is a breaking change
node_modules/svgo/node_modules/nth-check
  css-select  <=3.1.0
  Depends on vulnerable versions of nth-check
  node_modules/svgo/node_modules/css-select
    svgo  1.0.0 - 1.3.2
    Depends on vulnerable versions of css-select
    node_modules/svgo
      gatsby-plugin-sharp  >=2.0.31
      Depends on vulnerable versions of gatsby
      Depends on vulnerable versions of gatsby-plugin-utils
      Depends on vulnerable versions of svgo
      node_modules/gatsby-plugin-sharp
        gatsby-remark-images  1.6.0-alpha.03b9df85 - 2.0.0-alpha.23 || 2.1.0-alpha.80a21f04 - 2.1.0-alpha.e328d33f || >=3.12.0-next.0
        Depends on vulnerable versions of gatsby
        Depends on vulnerable versions of gatsby-plugin-sharp
        node_modules/gatsby-remark-images
        gatsby-transformer-sharp  >=2.13.0-next.0
        Depends on vulnerable versions of gatsby
        Depends on vulnerable versions of gatsby-plugin-sharp
        node_modules/gatsby-transformer-sharp

sanitize-html  <=2.3.1
Severity: moderate
Improper Input Validation in sanitize-html - https://github.com/advisories/GHSA-rjqq-98f6-6j3r
Improper Input Validation in sanitize-html - https://github.com/advisories/GHSA-mjxr-4v3x-q3m4
No fix available
node_modules/sanitize-html
  gatsby-transformer-remark  *
  Depends on vulnerable versions of gatsby
  Depends on vulnerable versions of sanitize-html
  node_modules/gatsby-transformer-remark

35 vulnerabilities (4 moderate, 31 high)

To address issues that do not require attention, run:
  npm audit fix

To address all issues possible (including breaking changes), run:
  npm audit fix --force

Some issues need review, and may require choosing
a different dependency.
github-actions[bot] commented 2 years ago 
# npm audit report

ansi-html  <0.0.8
Severity: high
Uncontrolled Resource Consumption in ansi-html - https://github.com/advisories/GHSA-whgm-jr23-g3j9
fix available via `npm audit fix --force`
Will install gatsby-plugin-feed@2.13.1, which is a breaking change
node_modules/ansi-html
  @pmmmwh/react-refresh-webpack-plugin  <=0.5.0-rc.6
  Depends on vulnerable versions of ansi-html
  node_modules/@pmmmwh/react-refresh-webpack-plugin
    gatsby  >=2.0.18
    Depends on vulnerable versions of @pmmmwh/react-refresh-webpack-plugin
    Depends on vulnerable versions of babel-plugin-remove-graphql-queries
    Depends on vulnerable versions of cache-manager
    Depends on vulnerable versions of gatsby-plugin-utils
    node_modules/gatsby
      @ragaeeb/gatsby-plugin-chatwoot  *
      Depends on vulnerable versions of gatsby
      node_modules/@ragaeeb/gatsby-plugin-chatwoot
      babel-plugin-remove-graphql-queries  >=2.17.0-next.0
      Depends on vulnerable versions of gatsby
      node_modules/babel-plugin-remove-graphql-queries
      gatsby-plugin-feed  2.5.12-dev-ssr-2.536 || >=2.5.16
      Depends on vulnerable versions of gatsby
      Depends on vulnerable versions of gatsby-plugin-utils
      node_modules/gatsby-plugin-feed
      gatsby-plugin-manifest  >=2.4.36
      Depends on vulnerable versions of gatsby
      Depends on vulnerable versions of gatsby-plugin-utils
      node_modules/gatsby-plugin-manifest
      gatsby-plugin-offline  >=3.11.0-next.0
      Depends on vulnerable versions of gatsby
      node_modules/gatsby-plugin-offline
      gatsby-plugin-page-creator  >=2.11.0-next.0
      Depends on vulnerable versions of gatsby
      Depends on vulnerable versions of gatsby-plugin-utils
      node_modules/gatsby-plugin-page-creator
      gatsby-plugin-preact  >=4.8.0-next.0
      Depends on vulnerable versions of gatsby
      node_modules/gatsby-plugin-preact
      gatsby-plugin-react-helmet  >=3.11.0-next.0
      Depends on vulnerable versions of gatsby
      node_modules/gatsby-plugin-react-helmet
      gatsby-plugin-sass  >=3.3.0-next.0
      Depends on vulnerable versions of gatsby
      node_modules/gatsby-plugin-sass
      gatsby-plugin-sharp  >=2.0.31
      Depends on vulnerable versions of gatsby
      Depends on vulnerable versions of gatsby-plugin-utils
      Depends on vulnerable versions of svgo
      node_modules/gatsby-plugin-sharp
        gatsby-remark-images  1.6.0-alpha.03b9df85 - 2.0.0-alpha.23 || 2.1.0-alpha.80a21f04 - 2.1.0-alpha.e328d33f || >=3.12.0-next.0
        Depends on vulnerable versions of gatsby
        Depends on vulnerable versions of gatsby-plugin-sharp
        node_modules/gatsby-remark-images
        gatsby-transformer-sharp  >=2.13.0-next.0
        Depends on vulnerable versions of gatsby
        Depends on vulnerable versions of gatsby-plugin-sharp
        node_modules/gatsby-transformer-sharp
      gatsby-plugin-sitemap  >=2.13.0-next.0
      Depends on vulnerable versions of gatsby
      node_modules/gatsby-plugin-sitemap
      gatsby-plugin-typescript  >=2.13.0-next.0
      Depends on vulnerable versions of gatsby
      node_modules/gatsby-plugin-typescript
      gatsby-plugin-utils  0.2.27-qod.19 - 0.2.27-qod.21 || 0.2.31-query-modules-debug-missing-sq.23 || >=0.2.35
      Depends on vulnerable versions of gatsby
      node_modules/gatsby-plugin-utils
      gatsby-remark-copy-linked-files  >=2.11.0-next.0
      Depends on vulnerable versions of gatsby
      node_modules/gatsby-remark-copy-linked-files
      gatsby-remark-responsive-iframe  >=2.12.0-next.0
      Depends on vulnerable versions of gatsby
      node_modules/gatsby-remark-responsive-iframe
      gatsby-remark-smartypants  >=2.11.0-next.0
      Depends on vulnerable versions of gatsby
      node_modules/gatsby-remark-smartypants
      gatsby-source-filesystem  >=2.12.0-next.0
      Depends on vulnerable versions of gatsby
      node_modules/gatsby-source-filesystem
      gatsby-transformer-remark  *
      Depends on vulnerable versions of gatsby
      Depends on vulnerable versions of sanitize-html
      node_modules/gatsby-transformer-remark

async  <2.6.4
Severity: high
Prototype Pollution in async - https://github.com/advisories/GHSA-fwr7-v2mv-hh25
fix available via `npm audit fix --force`
Will install gatsby-plugin-feed@2.13.1, which is a breaking change
node_modules/async
node_modules/gh-pages/node_modules/async
  cache-manager  0.7.0 - 3.3.0
  Depends on vulnerable versions of async
  node_modules/cache-manager
    gatsby  >=2.0.18
    Depends on vulnerable versions of @pmmmwh/react-refresh-webpack-plugin
    Depends on vulnerable versions of babel-plugin-remove-graphql-queries
    Depends on vulnerable versions of cache-manager
    Depends on vulnerable versions of gatsby-plugin-utils
    node_modules/gatsby
      @ragaeeb/gatsby-plugin-chatwoot  *
      Depends on vulnerable versions of gatsby
      node_modules/@ragaeeb/gatsby-plugin-chatwoot
      babel-plugin-remove-graphql-queries  >=2.17.0-next.0
      Depends on vulnerable versions of gatsby
      node_modules/babel-plugin-remove-graphql-queries
      gatsby-plugin-feed  2.5.12-dev-ssr-2.536 || >=2.5.16
      Depends on vulnerable versions of gatsby
      Depends on vulnerable versions of gatsby-plugin-utils
      node_modules/gatsby-plugin-feed
      gatsby-plugin-manifest  >=2.4.36
      Depends on vulnerable versions of gatsby
      Depends on vulnerable versions of gatsby-plugin-utils
      node_modules/gatsby-plugin-manifest
      gatsby-plugin-offline  >=3.11.0-next.0
      Depends on vulnerable versions of gatsby
      node_modules/gatsby-plugin-offline
      gatsby-plugin-page-creator  >=2.11.0-next.0
      Depends on vulnerable versions of gatsby
      Depends on vulnerable versions of gatsby-plugin-utils
      node_modules/gatsby-plugin-page-creator
      gatsby-plugin-preact  >=4.8.0-next.0
      Depends on vulnerable versions of gatsby
      node_modules/gatsby-plugin-preact
      gatsby-plugin-react-helmet  >=3.11.0-next.0
      Depends on vulnerable versions of gatsby
      node_modules/gatsby-plugin-react-helmet
      gatsby-plugin-sass  >=3.3.0-next.0
      Depends on vulnerable versions of gatsby
      node_modules/gatsby-plugin-sass
      gatsby-plugin-sharp  >=2.0.31
      Depends on vulnerable versions of gatsby
      Depends on vulnerable versions of gatsby-plugin-utils
      Depends on vulnerable versions of svgo
      node_modules/gatsby-plugin-sharp
        gatsby-remark-images  1.6.0-alpha.03b9df85 - 2.0.0-alpha.23 || 2.1.0-alpha.80a21f04 - 2.1.0-alpha.e328d33f || >=3.12.0-next.0
        Depends on vulnerable versions of gatsby
        Depends on vulnerable versions of gatsby-plugin-sharp
        node_modules/gatsby-remark-images
        gatsby-transformer-sharp  >=2.13.0-next.0
        Depends on vulnerable versions of gatsby
        Depends on vulnerable versions of gatsby-plugin-sharp
        node_modules/gatsby-transformer-sharp
      gatsby-plugin-sitemap  >=2.13.0-next.0
      Depends on vulnerable versions of gatsby
      node_modules/gatsby-plugin-sitemap
      gatsby-plugin-typescript  >=2.13.0-next.0
      Depends on vulnerable versions of gatsby
      node_modules/gatsby-plugin-typescript
      gatsby-plugin-utils  0.2.27-qod.19 - 0.2.27-qod.21 || 0.2.31-query-modules-debug-missing-sq.23 || >=0.2.35
      Depends on vulnerable versions of gatsby
      node_modules/gatsby-plugin-utils
      gatsby-remark-copy-linked-files  >=2.11.0-next.0
      Depends on vulnerable versions of gatsby
      node_modules/gatsby-remark-copy-linked-files
      gatsby-remark-responsive-iframe  >=2.12.0-next.0
      Depends on vulnerable versions of gatsby
      node_modules/gatsby-remark-responsive-iframe
      gatsby-remark-smartypants  >=2.11.0-next.0
      Depends on vulnerable versions of gatsby
      node_modules/gatsby-remark-smartypants
      gatsby-source-filesystem  >=2.12.0-next.0
      Depends on vulnerable versions of gatsby
      node_modules/gatsby-source-filesystem
      gatsby-transformer-remark  *
      Depends on vulnerable versions of gatsby
      Depends on vulnerable versions of sanitize-html
      node_modules/gatsby-transformer-remark

cross-fetch  <=3.1.4 || >=3.2.0-alpha.0
Severity: high
Incorrect Authorization in cross-fetch - https://github.com/advisories/GHSA-7gc6-qh9x-w6h8
Depends on vulnerable versions of node-fetch
fix available via `npm audit fix`
node_modules/cross-fetch
  @graphql-tools/url-loader  <=7.4.3-alpha-9f8b9c45.0
  Depends on vulnerable versions of cross-fetch
  node_modules/@graphql-tools/url-loader
    graphql-config  <=0.0.0-experimental-feb71d0.7ba || 3.0.3 - 3.3.0 || 3.4.1
    Depends on vulnerable versions of @graphql-tools/url-loader
    node_modules/graphql-config

moment  <2.29.2
Severity: high
Path Traversal: 'dir/../../filename' in moment.locale - https://github.com/advisories/GHSA-8hfj-j24r-96c4
fix available via `npm audit fix`
node_modules/moment

node-fetch  <2.6.7
Severity: high
node-fetch is vulnerable to Exposure of Sensitive Information to an Unauthorized Actor - https://github.com/advisories/GHSA-r683-j2x4-v87g
fix available via `npm audit fix`
node_modules/cross-fetch/node_modules/node-fetch
  cross-fetch  <=3.1.4 || >=3.2.0-alpha.0
  Depends on vulnerable versions of node-fetch
  node_modules/cross-fetch
    @graphql-tools/url-loader  <=7.4.3-alpha-9f8b9c45.0
    Depends on vulnerable versions of cross-fetch
    node_modules/@graphql-tools/url-loader
      graphql-config  <=0.0.0-experimental-feb71d0.7ba || 3.0.3 - 3.3.0 || 3.4.1
      Depends on vulnerable versions of @graphql-tools/url-loader
      node_modules/graphql-config

nth-check  <2.0.1
Severity: moderate
Inefficient Regular Expression Complexity in nth-check - https://github.com/advisories/GHSA-rp65-9cf3-cjxr
fix available via `npm audit fix --force`
Will install gatsby-plugin-sharp@2.14.4, which is a breaking change
node_modules/svgo/node_modules/nth-check
  css-select  <=3.1.0
  Depends on vulnerable versions of nth-check
  node_modules/svgo/node_modules/css-select
    svgo  1.0.0 - 1.3.2
    Depends on vulnerable versions of css-select
    node_modules/svgo
      gatsby-plugin-sharp  >=2.0.31
      Depends on vulnerable versions of gatsby
      Depends on vulnerable versions of gatsby-plugin-utils
      Depends on vulnerable versions of svgo
      node_modules/gatsby-plugin-sharp
        gatsby-remark-images  1.6.0-alpha.03b9df85 - 2.0.0-alpha.23 || 2.1.0-alpha.80a21f04 - 2.1.0-alpha.e328d33f || >=3.12.0-next.0
        Depends on vulnerable versions of gatsby
        Depends on vulnerable versions of gatsby-plugin-sharp
        node_modules/gatsby-remark-images
        gatsby-transformer-sharp  >=2.13.0-next.0
        Depends on vulnerable versions of gatsby
        Depends on vulnerable versions of gatsby-plugin-sharp
        node_modules/gatsby-transformer-sharp

sanitize-html  <=2.3.1
Severity: moderate
Improper Input Validation in sanitize-html - https://github.com/advisories/GHSA-mjxr-4v3x-q3m4
Improper Input Validation in sanitize-html - https://github.com/advisories/GHSA-rjqq-98f6-6j3r
No fix available
node_modules/sanitize-html
  gatsby-transformer-remark  *
  Depends on vulnerable versions of gatsby
  Depends on vulnerable versions of sanitize-html
  node_modules/gatsby-transformer-remark

34 vulnerabilities (6 moderate, 28 high)

To address issues that do not require attention, run:
  npm audit fix

To address all issues possible (including breaking changes), run:
  npm audit fix --force

Some issues need review, and may require choosing
a different dependency.
github-actions[bot] commented 2 years ago 
# npm audit report

ansi-html  <0.0.8
Severity: high
Uncontrolled Resource Consumption in ansi-html - https://github.com/advisories/GHSA-whgm-jr23-g3j9
fix available via `npm audit fix --force`
Will install gatsby-plugin-sass@3.2.0, which is a breaking change
node_modules/ansi-html
  @pmmmwh/react-refresh-webpack-plugin  <=0.5.0-rc.6
  Depends on vulnerable versions of ansi-html
  node_modules/@pmmmwh/react-refresh-webpack-plugin
    gatsby  2.18.13-telemetry-test.2972 - 2.18.13-telemetry-test.2976 || >=2.19.39
    Depends on vulnerable versions of @pmmmwh/react-refresh-webpack-plugin
    Depends on vulnerable versions of babel-plugin-remove-graphql-queries
    Depends on vulnerable versions of gatsby-plugin-utils
    Depends on vulnerable versions of multer
    node_modules/gatsby
      @ragaeeb/gatsby-plugin-chatwoot  *
      Depends on vulnerable versions of gatsby
      node_modules/@ragaeeb/gatsby-plugin-chatwoot
      babel-plugin-remove-graphql-queries  >=2.17.0-next.0
      Depends on vulnerable versions of gatsby
      node_modules/babel-plugin-remove-graphql-queries
      gatsby-plugin-feed  2.5.12-dev-ssr-2.536 || >=2.5.16
      Depends on vulnerable versions of gatsby
      Depends on vulnerable versions of gatsby-plugin-utils
      node_modules/gatsby-plugin-feed
      gatsby-plugin-manifest  >=2.4.36
      Depends on vulnerable versions of gatsby
      Depends on vulnerable versions of gatsby-plugin-utils
      node_modules/gatsby-plugin-manifest
      gatsby-plugin-offline  >=3.11.0-next.0
      Depends on vulnerable versions of gatsby
      node_modules/gatsby-plugin-offline
      gatsby-plugin-page-creator  >=2.11.0-next.0
      Depends on vulnerable versions of gatsby
      Depends on vulnerable versions of gatsby-plugin-utils
      node_modules/gatsby-plugin-page-creator
      gatsby-plugin-preact  >=4.8.0-next.0
      Depends on vulnerable versions of gatsby
      node_modules/gatsby-plugin-preact
      gatsby-plugin-react-helmet  >=3.11.0-next.0
      Depends on vulnerable versions of gatsby
      node_modules/gatsby-plugin-react-helmet
      gatsby-plugin-sass  >=3.3.0-next.0
      Depends on vulnerable versions of gatsby
      node_modules/gatsby-plugin-sass
      gatsby-plugin-sharp  >=2.0.31
      Depends on vulnerable versions of gatsby
      Depends on vulnerable versions of gatsby-plugin-utils
      Depends on vulnerable versions of svgo
      node_modules/gatsby-plugin-sharp
        gatsby-remark-images  1.6.0-alpha.03b9df85 - 2.0.0-alpha.23 || 2.1.0-alpha.80a21f04 - 2.1.0-alpha.e328d33f || >=3.12.0-next.0
        Depends on vulnerable versions of gatsby
        Depends on vulnerable versions of gatsby-plugin-sharp
        node_modules/gatsby-remark-images
        gatsby-transformer-sharp  >=2.13.0-next.0
        Depends on vulnerable versions of gatsby
        Depends on vulnerable versions of gatsby-plugin-sharp
        node_modules/gatsby-transformer-sharp
      gatsby-plugin-sitemap  >=2.13.0-next.0
      Depends on vulnerable versions of gatsby
      node_modules/gatsby-plugin-sitemap
      gatsby-plugin-typescript  >=2.13.0-next.0
      Depends on vulnerable versions of gatsby
      node_modules/gatsby-plugin-typescript
      gatsby-plugin-utils  0.2.27-qod.19 - 0.2.27-qod.21 || 0.2.31-query-modules-debug-missing-sq.23 || >=0.2.35
      Depends on vulnerable versions of gatsby
      node_modules/gatsby-plugin-utils
      gatsby-remark-copy-linked-files  >=2.11.0-next.0
      Depends on vulnerable versions of gatsby
      node_modules/gatsby-remark-copy-linked-files
      gatsby-remark-responsive-iframe  >=2.12.0-next.0
      Depends on vulnerable versions of gatsby
      node_modules/gatsby-remark-responsive-iframe
      gatsby-remark-smartypants  >=2.11.0-next.0
      Depends on vulnerable versions of gatsby
      node_modules/gatsby-remark-smartypants
      gatsby-source-filesystem  >=2.12.0-next.0
      Depends on vulnerable versions of gatsby
      node_modules/gatsby-source-filesystem
      gatsby-transformer-remark  *
      Depends on vulnerable versions of gatsby
      Depends on vulnerable versions of sanitize-html
      node_modules/gatsby-transformer-remark

async  2.0.0 - 2.6.3
Severity: high
Prototype Pollution in async - https://github.com/advisories/GHSA-fwr7-v2mv-hh25
fix available via `npm audit fix`
node_modules/gh-pages/node_modules/async

cross-fetch  <=2.2.3 || 2.2.5 || 3.0.0 - 3.1.4 || >=3.2.0-alpha.0
Severity: high
Incorrect Authorization in cross-fetch - https://github.com/advisories/GHSA-7gc6-qh9x-w6h8
Depends on vulnerable versions of node-fetch
fix available via `npm audit fix`
node_modules/cross-fetch
  @graphql-tools/url-loader  <=7.4.3-alpha-9f8b9c45.0
  Depends on vulnerable versions of cross-fetch
  node_modules/@graphql-tools/url-loader
    graphql-config  <=0.0.0-experimental-feb71d0.7ba || 3.0.3 - 3.3.0 || 3.4.1
    Depends on vulnerable versions of @graphql-tools/url-loader
    node_modules/graphql-config

devcert  <1.2.1
Regular expression denial of service in devcert - https://github.com/advisories/GHSA-fp36-299x-pwmw
fix available via `npm audit fix`
node_modules/devcert

dicer  *
Severity: high
Crash in HeaderParser in dicer - https://github.com/advisories/GHSA-wm7h-9275-46v2
fix available via `npm audit fix --force`
Will install gatsby-plugin-sass@3.2.0, which is a breaking change
node_modules/dicer
  busboy  <=0.3.1
  Depends on vulnerable versions of dicer
  node_modules/busboy
    multer  <=2.0.0-rc.3
    Depends on vulnerable versions of busboy
    node_modules/multer
      gatsby  2.18.13-telemetry-test.2972 - 2.18.13-telemetry-test.2976 || >=2.19.39
      Depends on vulnerable versions of @pmmmwh/react-refresh-webpack-plugin
      Depends on vulnerable versions of babel-plugin-remove-graphql-queries
      Depends on vulnerable versions of gatsby-plugin-utils
      Depends on vulnerable versions of multer
      node_modules/gatsby
        @ragaeeb/gatsby-plugin-chatwoot  *
        Depends on vulnerable versions of gatsby
        node_modules/@ragaeeb/gatsby-plugin-chatwoot
        babel-plugin-remove-graphql-queries  >=2.17.0-next.0
        Depends on vulnerable versions of gatsby
        node_modules/babel-plugin-remove-graphql-queries
        gatsby-plugin-feed  2.5.12-dev-ssr-2.536 || >=2.5.16
        Depends on vulnerable versions of gatsby
        Depends on vulnerable versions of gatsby-plugin-utils
        node_modules/gatsby-plugin-feed
        gatsby-plugin-manifest  >=2.4.36
        Depends on vulnerable versions of gatsby
        Depends on vulnerable versions of gatsby-plugin-utils
        node_modules/gatsby-plugin-manifest
        gatsby-plugin-offline  >=3.11.0-next.0
        Depends on vulnerable versions of gatsby
        node_modules/gatsby-plugin-offline
        gatsby-plugin-page-creator  >=2.11.0-next.0
        Depends on vulnerable versions of gatsby
        Depends on vulnerable versions of gatsby-plugin-utils
        node_modules/gatsby-plugin-page-creator
        gatsby-plugin-preact  >=4.8.0-next.0
        Depends on vulnerable versions of gatsby
        node_modules/gatsby-plugin-preact
        gatsby-plugin-react-helmet  >=3.11.0-next.0
        Depends on vulnerable versions of gatsby
        node_modules/gatsby-plugin-react-helmet
        gatsby-plugin-sass  >=3.3.0-next.0
        Depends on vulnerable versions of gatsby
        node_modules/gatsby-plugin-sass
        gatsby-plugin-sharp  >=2.0.31
        Depends on vulnerable versions of gatsby
        Depends on vulnerable versions of gatsby-plugin-utils
        Depends on vulnerable versions of svgo
        node_modules/gatsby-plugin-sharp
          gatsby-remark-images  1.6.0-alpha.03b9df85 - 2.0.0-alpha.23 || 2.1.0-alpha.80a21f04 - 2.1.0-alpha.e328d33f || >=3.12.0-next.0
          Depends on vulnerable versions of gatsby
          Depends on vulnerable versions of gatsby-plugin-sharp
          node_modules/gatsby-remark-images
          gatsby-transformer-sharp  >=2.13.0-next.0
          Depends on vulnerable versions of gatsby
          Depends on vulnerable versions of gatsby-plugin-sharp
          node_modules/gatsby-transformer-sharp
        gatsby-plugin-sitemap  >=2.13.0-next.0
        Depends on vulnerable versions of gatsby
        node_modules/gatsby-plugin-sitemap
        gatsby-plugin-typescript  >=2.13.0-next.0
        Depends on vulnerable versions of gatsby
        node_modules/gatsby-plugin-typescript
        gatsby-plugin-utils  0.2.27-qod.19 - 0.2.27-qod.21 || 0.2.31-query-modules-debug-missing-sq.23 || >=0.2.35
        Depends on vulnerable versions of gatsby
        node_modules/gatsby-plugin-utils
        gatsby-remark-copy-linked-files  >=2.11.0-next.0
        Depends on vulnerable versions of gatsby
        node_modules/gatsby-remark-copy-linked-files
        gatsby-remark-responsive-iframe  >=2.12.0-next.0
        Depends on vulnerable versions of gatsby
        node_modules/gatsby-remark-responsive-iframe
        gatsby-remark-smartypants  >=2.11.0-next.0
        Depends on vulnerable versions of gatsby
        node_modules/gatsby-remark-smartypants
        gatsby-source-filesystem  >=2.12.0-next.0
        Depends on vulnerable versions of gatsby
        node_modules/gatsby-source-filesystem
        gatsby-transformer-remark  *
        Depends on vulnerable versions of gatsby
        Depends on vulnerable versions of sanitize-html
        node_modules/gatsby-transformer-remark

moment  <2.29.2
Severity: high
Path Traversal: 'dir/../../filename' in moment.locale - https://github.com/advisories/GHSA-8hfj-j24r-96c4
fix available via `npm audit fix`
node_modules/moment

node-fetch  <2.6.7
Severity: high
node-fetch is vulnerable to Exposure of Sensitive Information to an Unauthorized Actor - https://github.com/advisories/GHSA-r683-j2x4-v87g
fix available via `npm audit fix`
node_modules/cross-fetch/node_modules/node-fetch
  cross-fetch  <=2.2.3 || 2.2.5 || 3.0.0 - 3.1.4 || >=3.2.0-alpha.0
  Depends on vulnerable versions of node-fetch
  node_modules/cross-fetch
    @graphql-tools/url-loader  <=7.4.3-alpha-9f8b9c45.0
    Depends on vulnerable versions of cross-fetch
    node_modules/@graphql-tools/url-loader
      graphql-config  <=0.0.0-experimental-feb71d0.7ba || 3.0.3 - 3.3.0 || 3.4.1
      Depends on vulnerable versions of @graphql-tools/url-loader
      node_modules/graphql-config

nth-check  <2.0.1
Severity: high
Inefficient Regular Expression Complexity in nth-check - https://github.com/advisories/GHSA-rp65-9cf3-cjxr
fix available via `npm audit fix --force`
Will install gatsby-plugin-sharp@2.14.4, which is a breaking change
node_modules/svgo/node_modules/nth-check
  css-select  <=3.1.0
  Depends on vulnerable versions of nth-check
  node_modules/svgo/node_modules/css-select
    svgo  1.0.0 - 1.3.2
    Depends on vulnerable versions of css-select
    node_modules/svgo
      gatsby-plugin-sharp  >=2.0.31
      Depends on vulnerable versions of gatsby
      Depends on vulnerable versions of gatsby-plugin-utils
      Depends on vulnerable versions of svgo
      node_modules/gatsby-plugin-sharp
        gatsby-remark-images  1.6.0-alpha.03b9df85 - 2.0.0-alpha.23 || 2.1.0-alpha.80a21f04 - 2.1.0-alpha.e328d33f || >=3.12.0-next.0
        Depends on vulnerable versions of gatsby
        Depends on vulnerable versions of gatsby-plugin-sharp
        node_modules/gatsby-remark-images
        gatsby-transformer-sharp  >=2.13.0-next.0
        Depends on vulnerable versions of gatsby
        Depends on vulnerable versions of gatsby-plugin-sharp
        node_modules/gatsby-transformer-sharp

sanitize-html  <=2.3.1
Severity: moderate
Improper Input Validation in sanitize-html - https://github.com/advisories/GHSA-mjxr-4v3x-q3m4
Improper Input Validation in sanitize-html - https://github.com/advisories/GHSA-rjqq-98f6-6j3r
No fix available
node_modules/sanitize-html
  gatsby-transformer-remark  *
  Depends on vulnerable versions of gatsby
  Depends on vulnerable versions of sanitize-html
  node_modules/gatsby-transformer-remark

sharp  <0.30.5
Severity: moderate
Possible vulnerability in sharp at 'npm install' time if an attacker has control over build environment - https://github.com/advisories/GHSA-gp95-ppv5-3jc5
fix available via `npm audit fix`
node_modules/sharp

38 vulnerabilities (1 low, 4 moderate, 33 high)

To address issues that do not require attention, run:
  npm audit fix

To address all issues possible (including breaking changes), run:
  npm audit fix --force

Some issues need review, and may require choosing
a different dependency.