react-native-markdown-display icon indicating copy to clipboard operation
react-native-markdown-display copied to clipboard
verified publisher icon iamacup

markdown-it dependency vulnerability

Open dsngeu opened this issue 5 months ago • 3 comments

[email protected] └── [email protected] (vulnerable version)

dsngeu avatar Aug 21 '25 13:08 dsngeu

@dsngeu has overriding the version of markdown-it worked for you?

dotnich-io avatar Sep 15 '25 00:09 dotnich-io

@dotnich-io @dsngeu Worked for me overriding markdown-it in package.json. Didn't seem to break anything 😅

  "overrides": {
    "markdown-it": "14.1.0"
  },

wedelgaard avatar Sep 18 '25 06:09 wedelgaard

@dotnich-io @dsngeu Worked for me overriding markdown-it in package.json. Didn't seem to break anything 😅

  "overrides": {
    "markdown-it": "14.1.0"
  },

You should add the package in the override:

  "overrides": {
    "react-native-markdown-display": {
      "markdown-it": "14.1.0"
    }
  }

mlachman avatar Nov 29 '25 19:11 mlachman

Well i forked this repo and removed unmaintained package. If you guys want to try or if some see some things that dont work here is the link

https://www.npmjs.com/package/@novastera-oss/react-native-markdown-display

I migrated all to typescript too

DarkSorrow avatar Jan 24 '26 13:01 DarkSorrow