Should update moment dependency to >2.19.3 (ReDOS vulnerability) #655
Closed
Description
moment-timezone still allows versions of moment (>= 2.9.0) that contain a vulnerability. The dependency version should be bumped to the fix, >2.19.3.
{{ message }}