You signed in with another tab or window. Reload to refresh your session.You signed out in another tab or window. Reload to refresh your session.You switched accounts on another tab or window. Reload to refresh your session.Dismiss alert
I Propose we remove gatsby-plugin-og-image from all of Gatsby's projects.
Motivation
Yarn v2 (berry) is having issues building Gatsby, as gatsby-plugin-og-image depends on an old version of jimp, which contains transitive dependencies and security vulnerabilities, as stated in this PR.
Summary
I Propose we remove
gatsby-plugin-og-image
from all of Gatsby's projects.Motivation
Yarn v2 (berry) is having issues building Gatsby, as
gatsby-plugin-og-image
depends on an old version ofjimp
, which contains transitive dependencies and security vulnerabilities, as stated in this PR.Check the E2E tests in berry repo to see the issue.
It seems like
gatsby-plugin-og-image
is not maintained at all. It only has one version, no Github repo attached to the npm package and only a few dependants.The text was updated successfully, but these errors were encountered: