You signed in with another tab or window. Reload to refresh your session.You signed out in another tab or window. Reload to refresh your session.You switched accounts on another tab or window. Reload to refresh your session.Dismiss alert
Even if not really vulnerable, that makes tons of projects receiving 3 false positive vulnerability alerts. And since no newer release is available, one can't "path" other than dismissing the alert.
It's already fixed since now docsify uses marked v14.1.0, we just are lacking a newer release.
Hi @noraj , thx for you mention on this.
The new release may take a time to confirm with the members.
I will sync with you when the release decision set done asap.
It would be nice to have a new release of dosify including the current work.
Indeed, last release is v4.13.1 from Jun 24, 2023. What's annoying is that docsify v4.13.1 was using marked v1.2.9
docsify/package.json
Line 68 in 862b100
So any project using docsify on github right now, have 3 vulnerability alerts opened:
Even if not really vulnerable, that makes tons of projects receiving 3 false positive vulnerability alerts. And since no newer release is available, one can't "path" other than dismissing the alert.
It's already fixed since now docsify uses marked v14.1.0, we just are lacking a newer release.
https://github.com/docsifyjs/docsify/blob/ceb466ca9c29bec775f4ebda449f8ea40a5453df/package.json#L73C6-L73C13
The text was updated successfully, but these errors were encountered: