react-pdf icon indicating copy to clipboard operation
react-pdf copied to clipboard

Published 20 hours ago verified publisher icon wojtekmaj

Fix the isEvalSupported security issue for version 6.2.x

Open NathanJozef opened this issue 1 month ago • 7 comments

Before you start - checklist

  • [X] I followed instructions in documentation written for my React-PDF version
  • [X] I have checked if this bug is not already reported
  • [X] I have checked if an issue is not listed in Known issues
  • [X] If I have a problem with PDF rendering, I checked if my PDF renders properly in PDF.js demo

Description

Require a fix for the isEvalSupported security issue. Well documented issue here. This would allow backwards compatibility for users stuck on Node 16.

Steps to reproduce

Run auditing tool on v6.2.2

Expected behavior

Security vulnerability is addressed.

Actual behavior

audit passes with warning. Not error.

Additional information

I have a branch ready to push if you want to review it as a PR. Would need collaborator status to push the branch.

Environment

  • Browser (if applicable): N/A
  • React-PDF version: 6.2.2
  • React version: 17.0.2
  • Webpack version (if applicable): N/A
  • Node version: 16.20.2

NathanJozef avatar May 09 '24 10:05 NathanJozef