mdx-js
Vulnerable Dependency #1435
Answered
by
ChristianMurphy
jasonchavez520
asked this question in
General
Vulnerable Dependency
#1435
-
|
Mdx is using an old/vulnerable trim library. According to snyk, trim 0.0.1 is vulnerable to the following: https://snyk.io/vuln/SNYK-JS-TRIM-1017038 Can trim be updated to version 1.0.0? Thank you. |
Beta Was this translation helpful? Give feedback.
Answered by
ChristianMurphy
Jan 11, 2021
Replies: 1 comment
-
|
MDX version 2, catches MDX up to remark latest, where it doesn't depend on trim. |
Beta Was this translation helpful? Give feedback.
0 replies
Answer selected by
ChristianMurphy
Sign up for free
to join this conversation on GitHub.
Already have an account?
Sign in to comment
MDX version 2, catches MDX up to remark latest, where it doesn't depend on trim.
You can find more information on MDX version 2, and its beta releases at #1041