Daniel Ruf

> Currently, the ImageViewHelper only partially supports the c and m suffixes for manually specified height and width. This is not quite clear to me. So we can we use...

v0.x is not developed anymore. Only 1.x will get updates. There are no patches (yet) as this would break many things. In general the whole situation was badly handled -...

Also these 3 are low severity. Often not all vulns are patched or can be patched (so easily). See https://www.npmjs.com/advisories for example.

Also to make this right. These are no real XSS. Only if you use this the wrong way. It is improper input validation in MaterializeCSS (CWE 20), not XSS (CWE...

You can't as there is no patched version. So your package manager will warn until npm inc gets a patched version and marks this as resolved.

I don't have M1 setups either atm and have not the resources to provide a PR.

http://perfectionkills.com/experimenting-with-html-minifier/#remove_attribute_quotes > Please, use this optimization with care. To me it looks like valid HTML:  Browsers interpret the input like this:  For me it seems this is a...

Seems to be missing in the normal releaes here too: https://github.com/highcharts/node-export-server/releases

Thanks for reporting this. Feel free to provide a PR.

From 1.0.1 to 1.0.5 something broke pptx files. Probably relevant: * https://github.com/PHPOffice/Common/commit/5a2eeb82d4dfce4ce2163819063ba6f5a80c3e91 * https://github.com/PHPOffice/PHPPresentation/issues/858