critical vulnerability #35
Description
Any chance to update cheerio dependency?
I'ts giving a critical vulnerability as it depends on cheerio@0.10.8:
└─┬ activator@3.4.0
└─┬ styliner@1.0.4
└── cheerio@0.10.8
underscore 1.3.2 - 1.12.0
Severity: critical
Arbitrary Code Execution in underscore - https://github.com/advisories/GHSA-cf4h-3jhx-xvhq
fix available via `npm audit fix`
node_modules/underscore
cheerio 0.10.5 - 0.13.1
Depends on vulnerable versions of underscore
node_modules/cheerio
In this case would open an issue in activator to upgrade also styliner...