Dependency webpack-subresource-integrity has security issue under version 1.5.1 #3958

InsaLili · 2020-10-22T14:58:38Z

Current Behavior

Current version "webpack-subresource-integrity": "1.1.0-rc.6"

webpack-subresource-integrity reports security issue: Tags are injected with integrity="undefined" on v1.5.0

This issue is patched in version 1.5.1.

webpack-subresource-integrity version should be >= 1.5.1

The text was updated successfully, but these errors were encountered:

vsavkin · 2020-11-10T18:31:35Z

The issue has been fixed here: 1b1ddfa

github-actions · 2023-03-24T17:04:51Z

This issue has been closed for more than 30 days. If this issue is still occuring, please open a new issue with more recent context.

InsaLili added the type: bug label Oct 22, 2020

InsaLili mentioned this issue Oct 22, 2020

fix(web): upgrade dependency webpack-subresource-integrity to 1.5.1 #3959

Closed

vsavkin added the scope: core core nx functionality label Oct 23, 2020

vsavkin self-assigned this Oct 23, 2020

InsaLili mentioned this issue Nov 1, 2020

fix(web): upgraded webpack-subresource-integrity #4004

Merged

vsavkin closed this as completed Nov 10, 2020

github-actions bot added the outdated label Mar 24, 2023

github-actions bot locked as resolved and limited conversation to collaborators Mar 24, 2023