distill: github security alert (Dependabot)

Hello,

I am "hosting" my distill blog on github (and publish it via Netlify). Today, I noted a security alert link] by github informing me that

karma prior to version 6.3.14 contains a cross-site scripting vulnerability.

Any idea what that means and what I can do on my side to rectify this? Or is it something
I can ignore? I assume it relates to all distill users?

Many thanks!

This topic was automatically closed 21 days after the last reply. New replies are no longer allowed.

If you have a query related to it or one of the replies, start a new topic and refer back with a link.