Forum Discussion
ScottPage
5 years agoCommunity Member
Thank you!!! Typically you don't have to jump major versions, 3 -> 4 for example, just get to a more recent version number that has no CVEs registered for it, as that is what is going to come up immediately in source code scanners or pen-testers who are looking at RetireJS output. I highly recommend the RetireJS Chrome extension for your QA staff as anything like this will jump out at them during testing. We use it all the time when building software. I have forwarded your note to the business to let them know there will be a fix. Thank you again!