Open matthew-heath opened 7 months ago
As part of dependabot vulnerability alerts set up on a private repository, the following alert shows for prismjs:
prismjs
The following PR fixed the above issue and it is suggested to upgrade to >=1.27.0 to avail of this.
>=1.27.0
Related CVE - https://www.cvedetails.com/cve/CVE-2022-23647/?q=CVE-2022-23647
As part of dependabot vulnerability alerts set up on a private repository, the following alert shows for
prismjs:The following PR fixed the above issue and it is suggested to upgrade to
>=1.27.0to avail of this.Related CVE - https://www.cvedetails.com/cve/CVE-2022-23647/?q=CVE-2022-23647