You signed in with another tab or window. Reload to refresh your session.You signed out in another tab or window. Reload to refresh your session.You switched accounts on another tab or window. Reload to refresh your session.Dismiss alert
It appears as the author of the original qrcode dependency currently has no time to merge the open PR mentioned above. For now, I forked [1] the lib and bumped the dependency to a fixed version [2].
In partial this was because of an issue with the lib colors.js, used by qrcode.
The moment the open PR gets merged into the qrcode lib, the dependency will be switched back.
Currently, we are having some security warning in synk. It's requesting upgrade y18n version update to 5.0.5 from 4.0.0.
Error message
Prototype Pollution [High Severity][https://snyk.io/vuln/SNYK-JS-Y18N-1021887] in [email protected]
introduced by [email protected] > [email protected] > [email protected] > [email protected]
This issue was fixed in versions: 5.0.5
The text was updated successfully, but these errors were encountered: