Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

New release - marked vulnerability alert #2505

Open
noraj opened this issue Oct 20, 2024 · 1 comment
Open

New release - marked vulnerability alert #2505

noraj opened this issue Oct 20, 2024 · 1 comment

Comments

@noraj
Copy link

noraj commented Oct 20, 2024

It would be nice to have a new release of dosify including the current work.

Indeed, last release is v4.13.1 from Jun 24, 2023. What's annoying is that docsify v4.13.1 was using marked v1.2.9

"marked": "^1.2.9",

So any project using docsify on github right now, have 3 vulnerability alerts opened:

Even if not really vulnerable, that makes tons of projects receiving 3 false positive vulnerability alerts. And since no newer release is available, one can't "path" other than dismissing the alert.

It's already fixed since now docsify uses marked v14.1.0, we just are lacking a newer release.

https://github.com/docsifyjs/docsify/blob/ceb466ca9c29bec775f4ebda449f8ea40a5453df/package.json#L73C6-L73C13

@noraj noraj changed the title New release New release - marked vulnerability alert Oct 20, 2024
@Koooooo-7
Copy link
Member

Hi @noraj , thx for you mention on this.
The new release may take a time to confirm with the members.
I will sync with you when the release decision set done asap.

Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Projects
None yet
Development

No branches or pull requests

2 participants