GHSA advisory link : GHSA-76p7-773f-r4q5
Current dependency: 6.0.2
Vulnerable range: ≤ 7.0.2
Fixed in: 7.0.3
Attempted upgrade → node 18 CI fails #421 (ReferenceError: crypto is not defined)
i would like to Request maintainer guidance.
Is the current usage of serialize-javascript within this plugin actually exploitable in practice?
GHSA advisory link : GHSA-76p7-773f-r4q5
Current dependency: 6.0.2
Vulnerable range: ≤ 7.0.2
Fixed in: 7.0.3
Attempted upgrade → node 18 CI fails #421 (ReferenceError: crypto is not defined)
i would like to Request maintainer guidance.
Is the current usage of serialize-javascript within this plugin actually exploitable in practice?