Stuck on an issue?

Lightrun Answers was designed to reduce the constant googling that comes with debugging 3rd party libraries. It collects links to all the places you might be looking at while hunting down a tough bug.

And, if you’re still stuck at the end, we’re happy to hop on a call to see how we can help out.

Update postcss to 8.2.10 or higher

See original GitHub issue

Type of Issue

[x] Bug Report
[ ] Feature Request

Description

Update postcss for vulnerabilities purposes https://npmjs.com/advisories/1693

Issue Analytics

State:
Created 2 years ago
Reactions:1
Comments:8 (3 by maintainers)

Top GitHub Comments

1reaction

alan-agius4commented, Jun 18, 2021

Closing as postcss released a security fix in 7.0.36.

More info: https://npmjs.com/advisories/1693

1reaction

rabraghibcommented, May 16, 2021

I am using v12 of angular & It steal not updated https://github.com/ng-packagr/ng-packagr/blob/c2efc42591ea8f2581cb7c8d3ea16a6b9cfa526e/package.json#L49

Top Results From Across the Web

postcss 7.0.0 - 8.2.9 Severity: moderate Regular Expression ...

I'm having the same issue. Doing a npm audit fix --force downgrades react-scripts resolving theses vulnerabilities but introducing yet more ...

PostCSS 8.0: Plugin migration guide - Evil Martians

PostCSS 8.0: Plugin migration guide · Step 1: Move postcss to peerDependencies · Step 2: Use the updated API · Step 3: Fully...

postcss - npm

PostCSS is a tool for transforming styles with JS plugins. These plugins can lint your CSS, support variables and mixins, transpile future CSS ......

Postcss dependency of react-scripts needs an upgrade #10945

Hi team My build is not passing because I'm using npm audit to detect vulnerabilities. Npm audit detected a vulnerability with postcss which ......

postcss@8.2.9 - Snyk Vulnerability Database

Learn more about known postcss 8.2.9 vulnerabilities and licenses detected. ... Upgrade postcss to version 7.0.36, 8.2.10 or higher.

Troubleshoot Live Code

Lightrun enables developers to add logs, metrics and snapshots to live code - no restarts or redeploys required.

Start Free

Top Related Reddit Thread

No results found

Top Related Tweet

No results found

Top Related Dev.to Post

No results found

Update postcss to 8.2.10 or higher

Type of Issue

Description

Issue Analytics

Top GitHub Comments

Top Results From Across the Web

Top Related Medium Post

Top Related StackOverflow Question

Troubleshoot Live Code

Top Related Reddit Thread

Top Related Hackernoon Post

Top Related Tweet

Top Related Dev.to Post

Top Related Hashnode Post

False detection of potential dependency

[feature request] support jsonc format config like `angular.json`