react-svg-loader icon indicating copy to clipboard operation
react-svg-loader copied to clipboard
verified publisher icon boopathi

v4

Open lagunovsky opened this issue 4 years ago • 3 comments

  • Update svgo to v2
  • Update babel to v7
  • Using jest instead of tap
  • Improved type coverage
  • Generate named components

#307 #295 #303 #323 #318

lagunovsky avatar Oct 16 '21 08:10 lagunovsky

What is the status of this PR? It would be great to update the SVGO package to the latest v2.

Currently the version of SVGO used doesn't allow to fix the vulnerability of the nth-check package. The current version (1.3.2) uses css-select v2 (latest is 2.1.0), that depends on nth-check v1 (latest is 1.0.2). The SVGO v2.8.0 uses css-select v4, that depends on nth-check v2, that is fine.

Could I help in some way to get it done?

afdev82 avatar Mar 15 '22 13:03 afdev82

What is the status of this PR? It would be great to update the SVGO package to the latest v2.

Currently the version of SVGO used doesn't allow to fix the vulnerability of the nth-check package. The current version (1.3.2) uses css-select v2 (latest is 2.1.0), that depends on nth-check v1 (latest is 1.0.2). The SVGO v2.8.0 uses css-select v4, that depends on nth-check v2, that is fine.

Could I help in some way to get it done?

+1

damdeez avatar Apr 27 '22 17:04 damdeez

+1 high severity vulnerabilities in svgo 1.3.2.

Miindaugas avatar Mar 03 '23 12:03 Miindaugas