Critical CVE with parse-url dependency

Question

ForgeRubenAguilar opened this issue 2 years ago · 3 comments

CVE-2022-2218 requires updating parse-url to 6.0.1 or higher.

Answer 1 · 2023-03-20T17:14:06.000Z

Did you find a solution? alternative?

Answer 2 · 2023-04-17T18:02:54.000Z

I will fix it in future, parse-url is not necessary.

Answer 3 · 2023-06-13T07:47:14.000Z

Is a PR that fixes this welcome?

Any thoughts about also replacing CI with github actions?