plugin-kit icon indicating copy to clipboard operation
plugin-kit copied to clipboard

Published 20 hours ago verified publisher icon sanity-io

parse-git-config vulnerability

Open rcmaples opened this issue 5 months ago • 1 comments
trafficstars

  • @sanity/plugin-kit depends on git-user-info

  • git-user-info depends on parse-git-config

  • parse-git-config dependency has a vulnerability that is creating some noise for packages relying on plugin-kit.

Is it possible to do something similar to the fix in pkg-utils? https://github.com/sanity-io/pkg-utils/pull/1402

rcmaples avatar May 24 '25 20:05 rcmaples

@rexxars tagging you for visibility :)

rcmaples avatar May 24 '25 20:05 rcmaples