Upgrade marked from 0.3.6 to 0.3.9

tcort / markdown-link-extractor

extracts links from markdown texts

ISC License

23 stars 19 forks source link

Upgrade marked from 0.3.6 to 0.3.9 #2

Closed ehmicky closed 6 years ago

ehmicky commented 6 years ago

marked@0.3.6 has a security vulnerability (XSS) that shows up on GitHub repositories that use it.

ehmicky commented 6 years ago

If you could also upgrade markdown-link-check (which is using markdown-link-extractor) after this is merged, this would help people using markdown-link-check not receiving the vulnerability notification. Thanks for your work!

tcort commented 6 years ago

Upgraded! Thanks for the poke.