[wp-trac] [WordPress Trac] #48217: Fork and Update `grunt-replace`
WordPress Trac
noreply at wordpress.org
Sat Oct 5 05:17:29 UTC 2019
#48217: Fork and Update `grunt-replace`
--------------------------+-----------------------------------
Reporter: whyisjake | Owner: (none)
Type: defect (bug) | Status: assigned
Priority: normal | Milestone: Awaiting Review
Component: General | Version:
Severity: normal | Keywords: has-patch 2nd-opinion
Focuses: |
--------------------------+-----------------------------------
The version of grunt replace that is bundled in core is using an outdated
version of `lodash` that is bringing 2 low, 3 high, and 1 critical issue.
This package is currently abandoned. There is a community forked version,
but that is also harboring some similar security issues.
I have forked `grunt-replace` into `grunt-replace-lts`. This patch brings
the new package over into core.
Related: #48203 and #48206
--
Ticket URL: <https://core.trac.wordpress.org/ticket/48217>
WordPress Trac <https://core.trac.wordpress.org/>
WordPress publishing platform
More information about the wp-trac
mailing list