"live-server": 1.2.1 references to "chokidar": "^2.0.4" which contains "glob-parent": "^3.1.0"

Question

VladimirTrunov opened this issue 3 years ago · 0 comments

Hello everyone,

For "glob-parent" of version "^3.1.0" there is a vulnerability generated: CVE-2020-28469

This vulnerability will be fixed for "live-server" if the related "chokidar" will be updated to at least "^3.0.0"

Could anybody please take a look?

Thanks,
-Vladimir