Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

High severity vulnerabilities #14

Open
arjangeertsema opened this issue Jan 15, 2025 · 3 comments
Open

High severity vulnerabilities #14

arjangeertsema opened this issue Jan 15, 2025 · 3 comments

Comments

@arjangeertsema
Copy link
Contributor

arjangeertsema commented Jan 15, 2025
edited
Loading

In version 1.0.1 you have added in this commit a very old and depricated version of cheerio-select: cf9c970#diff-7ae45ad102eab3b6d7e7896acd08c427a9b25b346470d7bc6507b6481575d519R11

This version was released 13 years ago and contains references which contain high severity vulnerabilities and also contain depreciation warnings:

npm warn deprecated [email protected]: the module is now available as 'css-what'
npm warn deprecated [email protected]: the module is now available as 'css-select'
@arjangeertsema arjangeertsema changed the title High severoty High severo Jan 15, 2025
@arjangeertsema arjangeertsema changed the title High severo High severity vulnerabilities Jan 15, 2025
@arjangeertsema arjangeertsema mentioned this issue Jan 15, 2025
Closed
@arjangeertsema
Copy link
Contributor Author

@matthewmueller cheerio-select is not used anywhere. Can you please remove the dependency and release version 1.0.2?

@arjangeertsema arjangeertsema mentioned this issue Jan 15, 2025
Closed
@matthewmueller
Copy link
Owner

matthewmueller commented Jan 17, 2025
edited
Loading

Oh, I think this was a mistake and it should have been a dev dependency.

PR welcome!

@arjangeertsema arjangeertsema mentioned this issue Jan 17, 2025
Merged
@arjangeertsema
Copy link
Contributor Author

@matthewmueller done, your turn!

Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Assignees
No one assigned
Labels
None yet
Projects
None yet
Milestone
No milestone
Development

No branches or pull requests
2 participants
@matthewmueller @arjangeertsema