react-code-blocks icon indicating copy to clipboard operation
react-code-blocks copied to clipboard

Published 20 hours ago verified publisher icon rajinwonderland

Vulnerability of dependency

Open crow7m opened this issue 3 years ago • 4 comments

Thank you for the great package, I have noticed that Prismjs has v 1.23 is marked as hight vulnerability, image This was patched in v1.24 can the react-code-blocks be updated to use the latest prism version ? thank you

crow7m avatar Sep 12 '21 07:09 crow7m

Thanks for the heads up @crow7m, will setup a resolution for this on the next release!

rajinwonderland avatar Sep 13 '21 17:09 rajinwonderland

Hi @rajinwonderland has react-code-blocks been updated yet to remove this vulnerability?

mallockey avatar Feb 23 '22 22:02 mallockey

What is the expected release date for this patch?

ozgur-dogan avatar Mar 03 '22 21:03 ozgur-dogan

Any word?

esciafardini avatar May 15 '22 02:05 esciafardini

Any updates on this? It's been over a year now.

snpranav avatar Jan 27 '23 16:01 snpranav

the sub package react-syntax-highlighter also has vulnerabilities

image

kleysonfiretail avatar Feb 09 '23 13:02 kleysonfiretail

Hey all, these should be resolved in 0.1.2 (latest)

thomasmost avatar Jul 25 '23 18:07 thomasmost