seanmturley / natureddit

A simple Reddit client, featuring a landing page dedicated to nature with posts pulled from a curated list of subreddits.

0 stars 1 forks source link

Investigate package vulnerabilities #156

Open seanmturley opened 8 months ago

seanmturley commented 8 months ago

Description

There are several high severity package vulnerabilities to investigate.

Run npm audit for details.

seanmturley commented 8 months ago

Noted that the "fix" for the vulnerabilities is to install react-script v3.0.1 (describing as a breaking change. This is really weird because the currently installed version is actually a lot newer - v5.0.1. Needs further investigation into the specific package vulnerabilities.