Resolve "Review and address high-level vulnerabilities as per vulnerabilities report" (!1168) · Merge requests · Recovery Cat Source / Rcc Client

Closes #1354 (closed)

Both affected packages are trans deps of @angular-devkit/build-angular (determined by yarn why). We're using v16.2.16 of that package, which seems to be the last version of v16 (i.e. there is no v16.2.17 or v16.3).

Upgrading Angular to a new major version seems like an overkill for this issue. So I just upgraded the 2 affected trans deps by specifying the patched versions in the package.json resolutions

Resolve "Review and address high-level vulnerabilities as per vulnerabilities report"

Merge request reports