Discourse embeds a custom copy of 1.3.0 version of lo-dash. Google’s lighthouse analysis reports 4 security vulnerabilities on my up-to-date Discourse instance, 3 of which are in lo-dash and one of which is marked as High severity. The lighthouse report links to [immagine] lodash vulnerab…

Lo-dash version has high severity security vulnerability

Stephen (Stephen) 17 Maggio 2019, 1:04am 6

Any chance it eliminated functionality which certain plugins used?

1 Mi Piace