import-sort icon indicating copy to clipboard operation
import-sort copied to clipboard

Published 20 hours ago verified publisher icon renke

Security vulnerability in import-sort-cli

Open jtart opened this issue 5 years ago • 2 comments
trafficstars

There is a low level security vulnerability in the yargs library that is used in the import-sort-cli. Bumping to latest should fix the issue.

Screenshot from using npm audit image

jtart avatar May 04 '20 16:05 jtart

Adding NPM advisory 1500 link.

haysclark avatar Jun 16 '20 06:06 haysclark

This library hasn't been updated since 2019. Maybe it needs a fork to fix the security issues in its dependencies?

taybin avatar Sep 11 '20 14:09 taybin