Low warning vulnerability relating to braces when installing uikit-react?
alextwothousand opened this issue · comments
Even though it appears that braces is not directly a dependency of uikit-react, it appears as if there is a low risk vulnerability with this. I've attempted to fix this to no avail, considering that I cannot seem to find any version of braces lower than 2.3.1 relating to this package, apart from in my npm package's package-lock json, which points a finger at uikit-react, along with npm audit
.
For more info, and how to fix, please check out the npm advisory link below:
https://npmjs.com/advisories/786