I’m getting vulnerability warnings because the graphql-config version 3.0.2 that is currently being used is dependent on an old version of
@graphql-tools/url-loader that has a
ws vulnerability. The dependency tree is eslint-plugin-graphql > graphql-config > @graphql-tools/url-loader > ws
I can’t push to the eslint-plugin-graphql repo otherwise I would make a PR.
Either can I have access to open a PR or does someone want to take this? Thank you!