StudioMaX
commented
2 years ago Bumping this.
Some time ago this became a problem, as the CVE-2016-10744 / GHSA-rf66-hmqf-q3fc vulnerability appeared in the GitHub Advisory Database database. The GitHub checker sees that we have installed a package called "select2", but at the same time version 1.0.10, which is not on NPM, and which, according to the "Affected versions < 4.0.6" condition, is vulnerable.
Hi!
Any chance to see this project published on the NPM and Bower registries?
Regards