movoid12
commented
10 months ago Good point. I did that already for a project by running:
pnpm audit fix
And i was able to update that and override and fix babel traverse vuln
Closed imoby closed 6 months ago
movoid12
commented
10 months ago Good point. I did that already for a project by running:
pnpm audit fix
And i was able to update that and override and fix babel traverse vuln
mrmckeb
commented
9 months ago Thanks @movoid12, yes we left peers unpinned to enable people to upgrade.
I'll make this change soon in the package - thanks again!
mrmckeb
commented
6 months ago I forgot to link this, but it should have been solved by this merge, and will be in v6.0. https://github.com/vercel/style-guide/pull/97
Can we update the deps for babel to > 7.23.2 to fix the babel traverse vuln: https://github.com/advisories/GHSA-67hx-6x53-jw92