Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

Update yarn.lock #255

Open
teolemon opened this issue Oct 5, 2022 · 1 comment
Open

Update yarn.lock #255

teolemon opened this issue Oct 5, 2022 · 1 comment
Labels
dependencies Pull requests that update a dependency file

Comments

@teolemon
Copy link
Member

teolemon commented Oct 5, 2022

Story

  • GitHub Security features are reporting outdated libraries with supposedly security issues
  • Update yarn.lock
@teolemon teolemon moved this to To do in Hunger Games (new) Oct 5, 2022
@alexfauquette
Copy link
Member

Vulnerabilities are dependencies of react-scripts-ts which is typescript code used for creating the project. It's not sent to the client and so does not cause vulnerability.

The problem being that they will probably not fix them soon, so not sure we can fix it

@teolemon teolemon added the dependencies Pull requests that update a dependency file label Oct 10, 2022
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Assignees
No one assigned
Labels
dependencies Pull requests that update a dependency file
Projects
Hunger Games (new)
Status: To Discuss & Validate
Milestone
No milestone
Development

No branches or pull requests
2 participants
@teolemon @alexfauquette