fix: update ansi-regex resolution #138

yowainwright · 2021-11-16T05:43:53Z

Fixes

Fixes Some action needed to update the vulnerable ansi-regex package #123
See snyk notes for why I think this is a fix.

Read about referenced issues here. Replace words with this Pull Request's context.

apepper · 2021-11-16T08:21:13Z

Good to see progress in this area!

AFAIK resolutions is a yarn only feature (see e.g. https://stackoverflow.com/q/52416312 ). There is an overrides npm flag in the making but it will probably take weeks to months until this is implemented.

yowainwright · 2021-11-16T18:22:04Z

@apepper pnpm supports resolutions too.

View the pnpm-lock.yaml in this PR for reference. 👍

apepper · 2022-02-25T08:28:04Z

Npm's "overrides" is now available. I created a pull-request to fix the warning for npm - #155.

yowainwright added 2 commits November 15, 2021 21:41

fix: update ansi-regex resolution

bf0cfa9

fix: change node gh action

1f0d1a4

yowainwright marked this pull request as ready for review November 16, 2021 06:20

fix: removes yarn.lock

7b8e3bf

yowainwright self-assigned this Nov 16, 2021

yowainwright added the bug Something isn't working label Nov 16, 2021

yowainwright merged commit 1e2ba78 into master Nov 17, 2021

yowainwright deleted the try-to-protect-ansi-regex branch November 17, 2021 14:49

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

fix: update ansi-regex resolution #138

fix: update ansi-regex resolution #138

yowainwright commented Nov 16, 2021 •

edited

Loading

apepper commented Nov 16, 2021

yowainwright commented Nov 16, 2021

apepper commented Feb 25, 2022

fix: update ansi-regex resolution #138

fix: update ansi-regex resolution #138

Conversation

yowainwright commented Nov 16, 2021 • edited Loading

Fixes

apepper commented Nov 16, 2021

yowainwright commented Nov 16, 2021

apepper commented Feb 25, 2022

yowainwright commented Nov 16, 2021 •

edited

Loading