PRISMA-2022-0039 in minimatch version 3.0.4 dependency

Question

Murali84 opened this issue 2 years ago · comments

Minimatch is flagged as HIGH vulnerability in PRISMA. Fix version found in 3.0.5.

Can you please check and let me know if more info required?

Jarom Evans · Answer 1 · Fri Oct 21 2022 03:25:07 GMT+0800 (China Standard Time)

iBen · Answer 2 · Fri Oct 21 2022 05:47:11 GMT+0800 (China Standard Time)

Add this to your package.json and test it
"overrides": {
"test-exclude": {
"minimatch": ">=3.0.5"
}
}