Skip to content

CVE-2023-44270 on package dependencies #136

New issue
New issue
Open
Open
CVE-2023-44270 on package dependencies#136
@BulatSa

Description

@BulatSa
BulatSa
opened on Nov 20, 2023

Hello, i have alert from scanning about dependencie postcss.
component-compiler-utils use "postcss": "^7.0.36", but
"id":"CVE-2023-44270","package":"postcss","version":"7.0.39","fix_version":"8.4.31","severity":"Medium"

Please update to postcss@8.4.31

Metadata

Metadata

Assignees

No one assigned

    Labels

    No labels
    No labels

    Type

    No type

    Projects

    No projects

    Milestone

    No milestone

    Relationships

    None yet

    Development

    No branches or pull requests

    Issue actions