GHSA-c6m7-q6pr-c64r: Vite Plugin React has a Source Code Exposure Vulnerability in React Server Components
@vitejs/plugin-rsc vendors react-server-dom-webpack, which contained a vulnerability in versions prior to 19.2.3. See details in React repository’s advisory https://github.com/facebook/react/security/advisories/GHSA-925w-6v3x-g4j4
References
Code Behaviors & Features
Detect and mitigate GHSA-c6m7-q6pr-c64r with GitLab Dependency Scanning
Secure your software supply chain by verifying that all open source dependencies used in your projects contain no disclosed vulnerabilities. Learn more about Dependency Scanning →