Problem/Motivation
During our scan, Security team has observed that serialize-javascript/6.0.0
has been included as dependency in the yarn.lock file but it has a known vulnerability , this needs version bump in the yarn.lock file to fix known vulnerability.
Steps to reproduce
Check yarn.lock file on 11.x head repo
Proposed resolution
Bump serialize-javascript to version 6.0.2 or higher in yarn.lock
Remaining tasks
Bump serialize-javascript to version.