feature #1203 upgrade css-minimizer-webpack-plugin to fix vulnerabili… · symfony/webpack-encore@cf3c24d

Commit

feature #1203 upgrade css-minimizer-webpack-plugin to fix vulnerabili…

…ty YAML (sloury)

This PR was merged into the main branch.

Discussion
----------

upgrade css-minimizer-webpack-plugin to fix vulnerability YAML

Bump Vulnerability from dependencies YAML, after 'yarn audit'

┌───────────────┬──────────────────────────────────────────────────────────────┐
│ moderate      │ Uncaught Exception in yaml                                   │
├───────────────┼──────────────────────────────────────────────────────────────┤
│ Package       │ yaml                                                         │
├───────────────┼──────────────────────────────────────────────────────────────┤
│ Patched in    │ >=2.2.2                                                      │
├───────────────┼──────────────────────────────────────────────────────────────┤
│ Dependency of │ `@symfony`/webpack-encore                                      │
├───────────────┼──────────────────────────────────────────────────────────────┤
│ Path          │ `@symfony`/webpack-encore > css-minimizer-webpack-plugin >     │
│               │ cssnano > yaml                                               │
├───────────────┼──────────────────────────────────────────────────────────────┤
│ More info     │ https://www.npmjs.com/advisories/1091814                     │
└───────────────┴──────────────────────────────────────────────────────────────┘

Upgrade the package version of css-minimizer-webpack-plugin:^5.0.0 seem to fix this warning

Commits
-------

9839879 upgrade css-minimizer-webpack-plugin to fix vulnerability YAML

Loading branch information

weaverryan committed Jul 10, 2023

2 parents 8f049ee + 9839879 commit cf3c24d

package.json

-Original file line number
+Diff line change
@@ Expand Up / @@ -33,7 +33,7 @@ @@
         "chalk": "^4.0.0",
         "clean-webpack-plugin": "^4.0.0",
         "css-loader": "^6.7.0",
-        "css-minimizer-webpack-plugin": "^4.0.0",
+        "css-minimizer-webpack-plugin": "^5.0.0",
         "fast-levenshtein": "^3.0.0",
         "mini-css-extract-plugin": "^2.6.0",
         "pkg-up": "^3.1.0",
@@ Expand Down @@

0 comments on commit `cf3c24d`

Please sign in to comment.

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

Commit

There are no files selected for viewing

0 comments on commit `cf3c24d`

Commit

There are no files selected for viewing

0 comments on commit cf3c24d

0 comments on commit `cf3c24d`