d3-color dependency update due to ReDoS
imkarakayaavl opened this issue · comments
imkarakayaavl commented
d3-interpolate uses d3-color as a dependency, which has a vulnerability "Regular Expression Denial of Service"(ReDoS) till version d3-color@3.1.0. Is it possible to upgrade it to d3-color to 3.1.0 ?
Philippe Rivière commented
duplicate of #106