You signed in with another tab or window. Reload to refresh your session.You signed out in another tab or window. Reload to refresh your session.You switched accounts on another tab or window. Reload to refresh your session.Dismiss alert
{{ message }}
This repository was archived by the owner on Dec 17, 2025. It is now read-only.
Guys, we are using a dependency called svg-inline-loader which is using loader-utils@.4.2 which seems to be using json5@1.0.2 and since svg-inline-loader version we are using is the latest one, we would need for loader-utils to be on a version that is using a json5 version where the CVE has been patched or perhaps a version not needing that dependency at all.
Could you please advise as we need to resolve these vulnerabilities as soon as possible.
Guys, we are using a dependency called
svg-inline-loaderwhich is usingloader-utils@.4.2which seems to be usingjson5@1.0.2and sincesvg-inline-loaderversion we are using is the latest one, we would need forloader-utilsto be on a version that is using ajson5version where the CVE has been patched or perhaps a version not needing that dependency at all.Could you please advise as we need to resolve these vulnerabilities as soon as possible.