jacobmischka/gatsby-plugin-react-svg

loadash vulnerability

silviopaganini opened this issue 5 years ago · 0 comments

silviopaganini commented 5 years ago

Expected Behavior

yarn audit shouldn't return any audit problems

Actual Behavior

yarn audit returns High vulnerability
More info
https://www.npmjs.com/advisories/1065

Possible Solution

Upgrade lodash

Steps to Reproduce

yarn audit / npm audit

Context

Currently breaks CI as we rely on audits

Environment

Node Version: v10.14.1
Package Manager Version: 6.4.1
Operating System: 18.6.0 Darwin Kernel Version 18.6.0: Thu Apr 25 23:16:27 PDT 2019; root:xnu-4903.261.4~2/RELEASE_X86_64 x86_64
Package Version: 2.1.1