mirror of
https://github.com/kremalicious/metamask-extension.git
synced 2024-11-29 07:16:36 +01:00
576eee7adf
* devDeps: eslint@8.14.0,8.20.0->8.36.0 - CVE-2021-4279 / CVE-2021-4279 - consolidate eslint into single version - port patches * add eslintignore directive * lavamoat: update build policy overrides
12 lines
462 B
Plaintext
12 lines
462 B
Plaintext
# improved-yarn-audit advisory exclusions
|
|
GHSA-257v-vj4p-3w2h
|
|
|
|
# yarn berry's `yarn npm audit` script reports the following vulnerability but
|
|
# it is a false positive. The offending version of 'ws' that is installed is
|
|
# 7.1.1 and is included only via remote-redux-devtools which is a devDependency
|
|
GHSA-6fc8-4gx4-v693
|
|
|
|
# request library is subject to SSRF.
|
|
# addressed by temporary patch in .yarn/patches/request-npm-2.88.2-f4a57c72c4.patch
|
|
GHSA-p8p7-x288-28g6
|