Skip to content

@csrf-armor/nuxt@1.1.1

Choose a tag to compare

View all tags
@github-actions github-actions released this 05 Apr 12:53
· 6 commits to main since this release
Immutable release. Only release title and notes can be modified.
@csrf-armor/nuxt@1.1.1
31156ca
This commit was created on GitHub.com and signed with GitHub’s verified signature.
GPG key ID: B5690EEEBB952194
Verified
Learn about vigilant mode.

Patch Changes

  • #46 2eded88 Thanks @muneebs! - fix: resolve high/moderate severity vulnerabilities in transitive dependencies

    Added pnpm overrides to force patched versions of lodash (>=4.18.0) and defu (>=6.1.5), which were pulled in transitively through the nuxt dependency chain. Addresses GHSA-r5fr-rjxr-66jc (lodash code injection), GHSA-f23m-r3pf-42rh (lodash prototype pollution), and GHSA-737v-mqg7-c878 (defu prototype pollution).

  • Updated dependencies [2eded88]:

    • @csrf-armor/core@1.2.2
Assets 3
Loading