Closed imoby closed 6 months ago
Good point. I did that already for a project by running:
pnpm audit fix
And i was able to update that and override and fix babel traverse vuln
Thanks @movoid12, yes we left peers unpinned to enable people to upgrade.
I'll make this change soon in the package - thanks again!
I forgot to link this, but it should have been solved by this merge, and will be in v6.0. https://github.com/vercel/style-guide/pull/97
Can we update the deps for babel to > 7.23.2 to fix the babel traverse vuln: https://github.com/advisories/GHSA-67hx-6x53-jw92