rollup-plugin-terser uses vulnerable serialize-javascript pkg
nielsboogaard opened this issue · 1 comments
nielsboogaard commented
serialize-javascript vulnerability is fixed in 2.1.1
rollup-plugin-terser PR fixes this: TrySound/rollup-plugin-terser#54 or TrySound/rollup-plugin-terser#53
Waiting for merge before updating rollup-plugin-terser
nielsboogaard commented
Fixed in v1.0.5