Dependent package "store" is using eval that is discouraged to use #284
Comments
blcham
changed the title
5 tasks
|
Note that solution to this issue might be also putting questions depending on yasgui functionality into a separate SForms components project (as it is natural anyway) -- which would also solve #283 |
Sign up for free
to join this conversation on GitHub.
Already have an account?
Sign in to comment
Reported by https://github.com/shellyear.
When using SForms library in record-manager-ui, we encountered the problem when running
npm run build:The root cause is the "eval" function being used inside node_modules/store/plugins/lib/json2.js. The "store" package is being used inside of @kbss-cvut/s-forms, in one of its dependencies. Eval by itself is not recommended to use in js, due to security issues
Related version of SForms: @kbss-cvut/[email protected]
The solution should be to not rely on packages that use eval. Maybe update the dependent package?
The text was updated successfully, but these errors were encountered: