Open theiliad opened 2 years ago
Hi, dom-to-image is a dependency in Charts https://charts.carbondesignsystem.com
dom-to-image
and there seems to be a new vulnerability report on the jQuery version that you're using https://github.com/advisories/GHSA-mhpp-875w-9cpv
It does look like jQuery might not be actually used in the final dom-to-image.js file (at least to me), however that's not sufficient for most auditing processes
dom-to-image.js
Please resolve this issue ASAP
A potential work-in-progress PR here https://github.com/tsayen/dom-to-image/pull/397
alternate PR: https://github.com/tsayen/dom-to-image/pull/398
+1 cc: @tsayen
Hi,
dom-to-image
is a dependency in Charts https://charts.carbondesignsystem.comand there seems to be a new vulnerability report on the jQuery version that you're using https://github.com/advisories/GHSA-mhpp-875w-9cpv
It does look like jQuery might not be actually used in the final
dom-to-image.js
file (at least to me), however that's not sufficient for most auditing processesPlease resolve this issue ASAP