Skip to content

Commit 133604d

Browse files
dotansimhadotansimha
authored
fix issues with mjml and html-minifier (false alarms on CVE) (#5770)
1 parent a99db39 commit 133604d

File tree

2 files changed

+6
-77
lines changed

2 files changed

+6
-77
lines changed

package.json

Lines changed: 4 additions & 1 deletion
Original file line numberDiff line numberDiff line change
@@ -99,8 +99,11 @@
9999
},
100100
"pnpm": {
101101
"overrides.csstype": "To fix type check error https://github.com/JedWatson/react-select/issues/5952",
102+
"overrides.mjml": "Our patch removes html-minifier from mjml-core, we dont need this dependency and its causing false-alarm (CVE https://nvd.nist.gov/vuln/detail/cve-2022-37620)",
102103
"overrides": {
103-
"csstype": "3.1.2"
104+
"csstype": "3.1.2",
105+
"[email protected]>html-minifier": "-",
106+
"[email protected]>html-minifier": "-"
104107
},
105108
"patchedDependencies": {
106109
"@theguild/[email protected]": "patches/@[email protected]",

pnpm-lock.yaml

Lines changed: 2 additions & 76 deletions
Some generated files are not rendered by default. Learn more about customizing how changed files appear on GitHub.

0 commit comments

Comments
 (0)