Handling jquery vuln on bootswatch v3 branch?

[mskyttner]

I have a custom bootswatch v3 theme based on this excellent repo and was just notified by dependabot of a vuln affecting jquery v >= 1.7.1, <= 1.8.3, which is patched in v 1.9.0, see https://github.com/advisories/GHSA-2pqj-h3vj-pqgw.

I think I would need to update a file at .../font-awesome/src/3.2.1/assets/js/jquery-1.7.1.min.js to fix this on my end.

Not sure if it can or needs to be handled "upstream" ie in this repo somehow on the v3 branch?

[stale[bot]]

This issue has been automatically marked as stale because it has not had recent activity. It will be closed if no further activity occurs. Thank you for your contributions.