react-image-cropper icon indicating copy to clipboard operation
react-image-cropper copied to clipboard
verified publisher icon flyfloor

deep-extend dependency issue.

Open sublimedatasys opened this issue 6 years ago • 0 comments

Found vulnerability while installing react-image-cropper. Latest version of react-image-cropper takes "deep-extend": "^0.4.1", as a dependency. But to avoid vulnerability "deep-extend": "^0.5.x" is required.

How to resolve this vulnerability.

sublimedatasys avatar Nov 28 '19 07:11 sublimedatasys