Skip to content

Security Fix

Compare
Choose a tag to compare
@evanplaice evanplaice released this 24 Mar 23:01

Patch security vulnerability (CVE-2020-7598) updating both 'acorn' and 'minimist'

The security vulnerability was caused by two deep dependencies of SemiStandard (ie linter). The modules using those dependencies published patch updates. Bumping relevant deps and re-creating package-lock.json brought all dependencies up-to-date.