Skip to content

fix(deps): bump svgo to 4.0.1 to fix DoS via entity expansion #19651

New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Merged
chargome merged 3 commits into from
Mar 5, 2026

fix(deps): deduplicate sax in lockfile after svgo bump

c75df1a
Select commit
Loading
Failed to load commit list.
Merged

fix(deps): bump svgo to 4.0.1 to fix DoS via entity expansion #19651

fix(deps): deduplicate sax in lockfile after svgo bump
c75df1a
Select commit
Loading
Failed to load commit list.
GitHub Advanced Security / CodeQL succeeded Mar 5, 2026 in 2s

No new alerts in code changed by this pull request

View all branch alerts.