lodash

dependabot is reporting a high severity issue with lodash which is imported by workbox-build. Is the a recommended method of upgrade to the latest version. It looks like workbox-build is only a dev dependency so I assume this isn’t an issue for a system deployed as a production system.

Hi @warmhearted-ostrich , if you refer high severity issue caused by vite. first is was fixed in npm to my knowledge, and sencod as you mentioned should not affect production. any way it’s always best to check closely …