Closed
Description
Latest release (5.1.1) is using 3.x branch of compression-webpack-plugin
, which is using 2.x branch of serialize-javascript
. And now yarn audit
it gives a notice from it.
In master
branch compression-webpack-plugin
is updated to 4.x, which in other hand is using 3.x of serialize-javascript
and thus has non-vulnerable version.
Could you make a new release? Or is there a way where I/we could get that 2.x of serialize-javascript
updated?
Metadata
Metadata
Assignees
Labels
No labels