New issue
Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.
By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.
Already on GitHub? Sign in to your account
loader-utils dependency v2 is vulnerable and should be updated to v3: CVE-2022-37599 #954
Comments
@nicolo-ribaudo Any chance to get updated version soon? |
Hey. Any guidance how we can help over this ? |
I think this issue might be resolved in PR #942 |
That is great to hear |
Is there any progress on this issue? Looks like it impacts most of react applications. Can someone help to fix the security issue? Thanks. |
We will remove |
Great. Thanks. We are expecting this upgrade to fix loader-utils security issue. |
Hello,
as the webpack loader-utils v2 are vulnerable, we get issues when installing babel-loader in current version 8.2.5. Could you please provide an update with the upgraded to v3 loader-utils package?
Link to more vulnerability details
https://nvd.nist.gov/vuln/detail/CVE-2022-37599
The text was updated successfully, but these errors were encountered: