Skip to content

jquery 3.4.1 has known vulnerabilities: severity: medium #2515

Description

@rajkeshwar
  • Operating System: macOS 10.15.3 (19D76)
  • Node Version: v10.16.0
  • NPM Version: 6.9.0
  • webpack Version: 4.41.6
  • webpack-dev-server Version: 3.10.3
  • Browser: Google Chrome 80.0.3987.163
  • This is a bug
  • This is a modification request

Code

Expected Behavior

Should not have any vulnerabilities issue.

Actual Behavior

jquery 3.4.1 has known vulnerabilities: severity: medium; summary: Regex in its jQuery.htmlPrefilter sometimes may introduce XSS; https://blog.jquery.com/2020/04/10/jquery-3-5-0-released/

For Bugs; How can we reproduce the behavior?

retire --jspath node_modules/

For Features; What is the motivation and/or use-case for the feature?

Metadata

Metadata

Assignees

No one assigned

    Labels

    No labels
    No labels

    Type

    No type

    Fields

    No fields configured for issues without a type.

    Projects

    No projects

    Milestone

    No milestone

    Relationships

    None yet

    Development

    No branches or pull requests

    Issue actions