Fix jimp high-severity error caused by lqip
mijorus opened this issue · 0 comments
mijorus commented
Describe the bug
lqip depends on an outdated version of jimp, that includes url-regex, a library with an High-severity vulnerability.
To Reproduce
Install lqip-loader
Additional context
Possible fix: require @memrise/lqip-loader this unofficial community package instead