This repository was archived by the owner on Dec 17, 2025. It is now read-only.
CVE-2022-46175 - High #252
Description
Guys, we are using a dependency called svg-inline-loader which is using loader-utils@.4.2 which seems to be using json5@1.0.2 and since svg-inline-loader version we are using is the latest one, we would need for loader-utils to be on a version that is using a json5 version where the CVE has been patched or perhaps a version not needing that dependency at all.
Could you please advise as we need to resolve these vulnerabilities as soon as possible.