Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

jQuery version seems to be vulnerable #399

Open
theiliad opened this issue Oct 27, 2021 · 3 comments
Open

jQuery version seems to be vulnerable #399

theiliad opened this issue Oct 27, 2021 · 3 comments

Comments

@theiliad
Copy link

Hi,
dom-to-image is a dependency in Charts
https://charts.carbondesignsystem.com

and there seems to be a new vulnerability report on the jQuery version that you're using
GHSA-mhpp-875w-9cpv

It does look like jQuery might not be actually used in the final dom-to-image.js file (at least to me), however that's not sufficient for most auditing processes

Please resolve this issue ASAP
@theiliad
Copy link
Author

A potential work-in-progress PR here #397

@pgodowski
Copy link

alternate PR: #398

@theiliad theiliad mentioned this issue Oct 29, 2021
Closed
@ChaitanyaVootla
Copy link

+1
cc: @tsayen

@davidicus davidicus mentioned this issue Sep 13, 2022
Closed
2 tasks
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Assignees
No one assigned
Labels
None yet
Projects
None yet
Milestone
No milestone
Development

No branches or pull requests
3 participants
@ChaitanyaVootla @pgodowski @theiliad