search

scottcorgan / tap-out

A different tap parser
MIT License
23 stars 28 forks source link

Loosen trim version pinning in package.json #44

Open gthb opened 3 years ago

gthb commented 3 years ago

To not get in the way of users of tap-out (e.g. via tap-spec) patching their way past https://github.com/advisories/GHSA-w5p7-h5w8-2hfq

jamesleesaunders commented 1 year ago

Please could this be considered? At the moment trim 0.0.1 has a security advisory (The earliest fixed version is 0.0.3). This advisory in turn flags onto tap-out and tap-spec which I am using.