NPM Install - 3 moderate severity vulnerabilities

Question

NPM Install - 3 moderate severity vulnerabilities

danimalweb opened this issue 2 years ago · comments

3 moderate severity vulnerabilities

# npm audit report

postcss  <7.0.36
Severity: moderate
Regular Expression Denial of Service in postcss - https://github.com/advisories/GHSA-566m-qj78-rww5
fix available via `npm audit fix --force`
Will install vite-plugin-svg-icons@0.1.0, which is a breaking change
node_modules/svg-baker/node_modules/postcss
  svg-baker  >=1.2.5
  Depends on vulnerable versions of postcss
  node_modules/svg-baker
    vite-plugin-svg-icons  >=0.1.1
    Depends on vulnerable versions of svg-baker
    node_modules/vite-plugin-svg-icons