- Laravel Mix Version: v6.0.13
- Node Version (
node -v): v14.16.0 - NPM Version (
npm -v): v6.14.11 - OS: Ubuntu 20.04
[email protected] requires is-svg@^3.0.0 via a transitive dependency on [email protected]
HDVinnie
All 5 comments
Same issue in [email protected] which also seems to be affected by CVE-2021-27290.
taisph
on 23 Mar 2021
This is due to our dependency of cssnano. I believe the only resolution right now is to use yarn + yarn resolutions to fix this. They have not released (and appears will not release) a fix in a non-major version.
thecrypticace
on 23 Mar 2021
👍3
It is also discuted here. It seems there is a 5.0.0-rc.2 version, but it needs to be specified/forced because latest stable release on NPM is currently 4.1.10
kslimani
on 30 Mar 2021
this issue fixed in [email protected] you should update your dependencies
brokeyourbike
on 8 Apr 2021
I sent in a PR for this one: https://github.com/JeffreyWay/laravel-mix/pull/2944
driesvints
on 21 Apr 2021
Was this page helpful?
0 / 5 - 0 ratings
Related issues
RomainGoncalves
路
3Comments
jpmurray
路
3Comments
rlewkowicz
路
3Comments
jpriceonline
路
3Comments
stefensuhat
路
3Comments
Most helpful comment
This is due to our dependency of cssnano. I believe the only resolution right now is to use yarn + yarn resolutions to fix this. They have not released (and appears will not release) a fix in a non-major version.