build(gulp-sass): update to new version #11270
Comments
This is related to the following issues: We pull two vulnerable dependencies in via According to the So we'll need to wait for the |
Still blocked by node-sass's v5 release which has pushed from 2-3 weeks to 4-5+ with no real sign that it is going to happen soon. |
|
It looks like we're still pulling in vulnerable versions of |
I haven't yet tracked down the |
Bug, enhancement request, or proposal:
Proposal
What is the expected behavior?
The project's dependencies are verified as secure.
What is the current behavior?
There is a warning due to an out of date sub-dependency of
gulp-sass
andnode-sass
. This only effects the library's build tooling and not the deployment assets or any application built with the library.What is the use-case or motivation for changing an existing behavior?
Compliance.
Which versions of AngularJS, Material, OS, and browsers are affected?
Is there anything else we should know? Stack Traces, Screenshots, etc.
N/A
The text was updated successfully, but these errors were encountered: