@vue/cli-service@5.0.4 is pulling postcss@7.0.39 which has vulnerability of CVE-2021-23368.#7293

younass2 started this conversation inGeneral

younass2

Sep 13, 2022

· 0 comments

Return to top

Discussion options

younass2
Sep 13, 2022

@vue/cli-service@5.0.4 is pulling postcss@7.0.39 which has vulnerability ofCVE-2021-23368.

Anyone know about about any plan of fixing this vulnerability in future releases or is there any other way to fix this vulnerability. Please share your thoughts.

Please let us know when you are planning to address this vulnerability?
Below is the Vulnerability Detail:

Below is list of npms pulling in our application
└─┬ @vue/cli-service@5.0.4
├─┬ @vue/component-compiler-utils@3.3.0
│ └── postcss@7.0.39
├─┬ autoprefixer@10.4.4
│ └── postcss@8.4.12 deduped

You must be logged in to vote

Movatterモバイル変換

Navigation Menu

Search code, repositories, users, issues, pull requests...

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

Uh oh!

Uh oh!

@vue/cli-service@5.0.4 is pulling postcss@7.0.39 which has vulnerability of CVE-2021-23368.#7293

Uh oh!

{{title}}

Uh oh!

younass2
Sep 13, 2022

Replies: 0 comments

Select a reply

Uh oh!

Movatterモバイル変換

Uh oh!

@vue/cli-service@5.0.4 is pulling postcss@7.0.39 which has vulnerability of CVE-2021-23368.#7293

Uh oh!

younass2Sep 13, 2022

Replies: 0 comments

Uh oh!

younass2
Sep 13, 2022