Skip to content

There is a vulnerability in highlight.js 9.18.1,upgrade recommended #156

New issue
New issue
Open
Open
There is a vulnerability in highlight.js 9.18.1,upgrade recommended#156
@QiAnXinCodeSafe

Description

@QiAnXinCodeSafe
QiAnXinCodeSafe
opened on Jan 22, 2021

echarts-doc/package-lock.json

Lines 4410 to 4413 in 47f5c06

"highlight.js": {
"version": "9.18.1",
"resolved": "https://registry.npmjs.org/highlight.js/-/highlight.js-9.18.1.tgz",
"integrity": "sha512-OrVKYz70LHsnCgmbXctv/bfuvntIKDz177h0Co37DQ5jamGZLVmoCVMtjMtNZY3X9DrCcKfklHPNeA0uPZhSJg=="

CVE-2020-26237

Recommended upgrade version:9.18.2

Metadata

Metadata

Assignees

No one assigned

    Labels

    No labels
    No labels

    Type

    No type

    Projects

    No projects

    Milestone

    No milestone

    Relationships

    None yet

    Development

    No branches or pull requests

    Issue actions