Closed hongaar closed 2 years ago
It would be nice to have this merged.
Currently, npm audit fix
downgrades to doctoc@1.3.1 which is vulnerable to other problems.
From that version npm audit fix
loops back to doctoc@v2.1...
Oof, sorry for the slow response here. This looks good to me, thanks.
This updates all dependencies to their latest version.
Specifically, this resolves an issue with a vulnerable version of
trim@0.0.1
in the current dependency tree.More details here: https://github.com/advisories/GHSA-w5p7-h5w8-2hfq
I had to slightly tweak one test to account for a change in the markdown parser (heading not recognized when part of a previous paragraph).