You signed in with another tab or window. Reload to refresh your session.You signed out in another tab or window. Reload to refresh your session.You switched accounts on another tab or window. Reload to refresh your session.Dismiss alert
postcss-color-function is a legacy package. It has not been maintained for about 2 years, and is not likely to be updated.
Is it possible to migrate postcss-color-function to other package to remediate this vulnerability?
I noticed several migration records for postcss-color-function in other js repos, such as
in AdvisorySG/ghost-advisory-theme, Replace the obsolete postcss-color-function with postcss-color-mod-function via commit
in JBValo/bond, Replace the obsolete postcss-color-function with postcss-color-mod-function via commit
in cloudflare/cf-ui, replace postcss-color-function by polished via commit
Are there any efforts planned that would remediate this vulnerability or migrate postcss-color-function?
Thanks
; )
The text was updated successfully, but these errors were encountered:
Hi, a vulnerability CVE-2021-23382 is introduced in @coorpacademy/components via:
● @coorpacademy/[email protected] ➔ [email protected] ➔ [email protected]
postcss-color-function is a legacy package. It has not been maintained for about 2 years, and is not likely to be updated.
Is it possible to migrate postcss-color-function to other package to remediate this vulnerability?
I noticed several migration records for postcss-color-function in other js repos, such as
commit
commit
Are there any efforts planned that would remediate this vulnerability or migrate postcss-color-function?
Thanks
; )
The text was updated successfully, but these errors were encountered: