High severity vulnerability: Latest @vue/cli-plugin-unit-mocha@5.0.8 requires vulnerable minimatch@3.0.4 via mocha@8.4.0

### Version
5.0.8







### Environment info
```
Dev Dependency: Latest @vue/cli-plugin-unit-mocha@5.0.8 depends on vulnerable minimatch@3.0.4 via mocha@8.4.0
```


### Steps to reproduce
Run `npm audit`

### What is expected?
The solution to resolve the vulnerability.

### What is actually happening?
The latest @vue/cli-plugin-unit-mocha@5.0.8 requires vulnerable minimatch@3.0.4 via mocha@8.4.0.

---
I need help finding a relevant solution or discussion on the internet for the issue. Though it's a dev dependency, it is a critical one.

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

Uh oh!

High severity vulnerability: Latest @vue/[email protected] requires vulnerable [email protected] via [email protected] #7366

Version

Environment info

Steps to reproduce

What is expected?

What is actually happening?

Metadata

Assignees

Labels

Type

Projects

Milestone

Relationships

Development

Uh oh!

High severity vulnerability: Latest @vue/[email protected] requires vulnerable [email protected] via [email protected] #7366

Description

Version

Environment info

Steps to reproduce

What is expected?

What is actually happening?

Metadata

Metadata

Assignees

Labels

Type

Projects

Milestone

Relationships

Development

Issue actions