You signed in with another tab or window. Reload to refresh your session.You signed out in another tab or window. Reload to refresh your session.You switched accounts on another tab or window. Reload to refresh your session.Dismiss alert
I haven't seen a security alert for this yet - we released a dependency update a few days ago (#558) is it possible this is already fixed in the latest?
edit: never mind, just checked yarn.lock and confirmed mem@1.1.0 is still there.
The version of yargs being used has a mem dependency with a security vulnerability:
sindresorhus/memoize#14 (Fixed with sindresorhus/memoize@da4e439 / sindresorhus/memoize#19)
sindresorhus/os-locale#31
yargs/yargs#1209 (Fixed with yargs>=12.0.2: yargs/yargs@efc0970 / yargs/yargs#1195)
Dependency hierarchy:
idyll/packages/idyll-cli/package.json
Line 73 in 43ac3aa
GitHub has recently started creating security alerts for this vulnerability:
The text was updated successfully, but these errors were encountered: