@@ -4,7 +4,7 @@ Endless Lifecycle Support (ELS) for Nuxt from TuxCare provides security fixes fo
44
55## Supported Nuxt Versions
66
7- * Nuxt (overrides only)
7+ * Nuxt 2.18.1, 3.2.0
88
99## Connection to ELS for Nuxt Library
1010
@@ -49,25 +49,48 @@ TuxCare provides ELS for Nuxt as an NPM package, hosted on a secure internal reg
4949
50504 . Update your ` package.json ` file to add the following overrides for the TuxCare packages:
5151
52- <CodeWithCopy >
52+ <TableTabs label = " Choose Nuxt version: " >
5353
54- ``` text
55- "overrides": {
56- "braces@2.3.2": "npm:@els-js/braces@2.3.2-tuxcare.3",
57- "braces@3.0.3": "npm:@els-js/braces@3.0.3-tuxcare.1",
58- "cookie@0.3.1": "npm:@els-js/cookie@0.3.1-tuxcare.1",
59- "devalue@2.0.1": "npm:@els-js/devalue@2.0.1-tuxcare.1",
60- "ip@2.0.1": "npm:@els-js/ip@2.0.1-tuxcare.2",
61- "lodash.template@4.5.0": "npm:@els-js/lodash.template@4.5.0-tuxcare.2",
62- "parse-git-config@3.0.0": "npm:@els-js/parse-git-config@3.0.0-tuxcare.1",
63- "postcss@7.0.39": "npm:@els-js/postcss@7.0.39-tuxcare.2",
64- "tmp@0.0.33": "npm:@els-js/tmp@0.0.33-tuxcare.1",
65- "vue@2.7.16": "npm:@els-js/vue@2.7.16-tuxcare.3",
66- "vue-template-compiler@2.7.16": "npm:@els-js/vue-template-compiler@2.7.16-tuxcare.3"
67- }
68- ```
54+ <template #nuxt_3.2.0>
6955
70- </CodeWithCopy >
56+ <CodeWithCopy >
57+
58+ ``` text
59+ "overrides": {
60+ "lodash.pick@4.4.0": "npm:@els-js/lodash.pick@4.4.0-tuxcare.1",
61+ "lodash.template@4.5.0": "npm:@els-js/lodash.template@4.5.0-tuxcare.2"
62+ }
63+ ```
64+
65+ </CodeWithCopy>
66+
67+ </template>
68+
69+ <template #nuxt_2.18.1>
70+
71+ <CodeWithCopy>
72+
73+ ```text
74+ "overrides": {
75+ "braces@2.3.2": "npm:@els-js/braces@2.3.2-tuxcare.3",
76+ "braces@3.0.3": "npm:@els-js/braces@3.0.3-tuxcare.1",
77+ "cookie@0.3.1": "npm:@els-js/cookie@0.3.1-tuxcare.1",
78+ "devalue@2.0.1": "npm:@els-js/devalue@2.0.1-tuxcare.1",
79+ "ip@2.0.1": "npm:@els-js/ip@2.0.1-tuxcare.2",
80+ "lodash.template@4.5.0": "npm:@els-js/lodash.template@4.5.0-tuxcare.2",
81+ "parse-git-config@3.0.0": "npm:@els-js/parse-git-config@3.0.0-tuxcare.1",
82+ "postcss@7.0.39": "npm:@els-js/postcss@7.0.39-tuxcare.2",
83+ "tmp@0.0.33": "npm:@els-js/tmp@0.0.33-tuxcare.1",
84+ "vue@2.7.16": "npm:@els-js/vue@2.7.16-tuxcare.3",
85+ "vue-template-compiler@2.7.16": "npm:@els-js/vue-template-compiler@2.7.16-tuxcare.3"
86+ }
87+ ```
88+
89+ </CodeWithCopy>
90+
91+ </template>
92+
93+ </TableTabs>
7194
72955. You need to remove the `node_modules` directory and the `package-lock.json` file, and also clear the `npm cache` before installing the patched packages. Use the following commands:
7396
@@ -128,6 +151,19 @@ If you have already installed a package with a `tuxcare.1` suffix and want to up
128151
129152Fixes for the following vulnerabilities are available in ELS for Nuxt from TuxCare versions:
130153
154+ <TableTabs label =" Choose Nuxt version: " >
155+
156+ <template #nuxt_3.2.0>
157+
158+ | CVE ID | CVE Type | Severity | Affected Libraries | Vulnerable Versions |
159+ | :-------------:| :---------:| :--------:| :------------------:| :-------------------:|
160+ | CVE-2020 -8203 | Transitive | High | lodash.pick | >= 4.0.0 <= 4.4.0 |
161+ | CVE-2021 -23337 | Transitive | High | lodash.template | <= 4.5.0 |
162+
163+ </template >
164+
165+ <template #nuxt_2.18.1>
166+
131167| CVE ID | CVE Type | Severity | Affected Libraries | Vulnerable Versions |
132168| :-------------:| :---------:| :--------:| :------------------:| :-------------------:|
133169| CVE-2024 -4068 | Transitive | High | braces | < 3.0.3 |
@@ -141,5 +177,9 @@ Fixes for the following vulnerabilities are available in ELS for Nuxt from TuxCa
141177| CVE-2024 -9506 | Transitive | High | vue | >=2.0.0 < 3.0.0 |
142178| CVE-2024 -6783 | Transitive | High | vue-template-compiler | >=2.0.0 < 3.0.0 |
143179
180+ </template >
181+
182+ </TableTabs >
183+
144184If you are interested in the TuxCare Endless Lifecycle Support, contact [ sales@tuxcare.com ] ( mailto:sales@tuxcare.com ) .
145185
0 commit comments