Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

[Docs]: warning references to polyfill.io, which is found to serve malware #11733

Closed
pvdstel opened this issue Jun 26, 2024 · 2 comments · Fixed by #11741
Closed

[Docs]: warning references to polyfill.io, which is found to serve malware #11733

pvdstel opened this issue Jun 26, 2024 · 2 comments · Fixed by #11741
Labels
docs

Comments

@pvdstel
Copy link

pvdstel commented Jun 26, 2024

Describe what's incorrect/missing in the documentation

Hello, just wanted to alert you to the following. One of the warnings in react-router references polyfill.io (source code here). This domain was found to serve malware, impacting many websites that rely on it in a supply chain attack.

News:

It might be better to link to other trusted websites, such as MDN: https://developer.mozilla.org/en-US/docs/Glossary/Polyfill.
@pvdstel pvdstel added the docs label Jun 26, 2024
@brophdawg11 brophdawg11 mentioned this issue Jun 27, 2024
Merged
@brophdawg11 brophdawg11 linked a pull request Jun 27, 2024 that will close this issue
Remove polyfil.io reference from warning message #11741
Merged
@brophdawg11 brophdawg11 added the awaiting release This issue have been fixed and will be released soon label Jun 27, 2024
@brophdawg11 brophdawg11 mentioned this issue Jun 28, 2024
Closed
@github-actions GitHub Actions
Copy link
Contributor

github-actions bot commented Jul 1, 2024

🤖 Hello there,

We just published version 6.24.1-pre.0 which involves this issue. If you'd like to take it for a test run please try it out and let us know what you think!

Thanks!

@github-actions GitHub Actions
Copy link
Contributor

github-actions bot commented Jul 3, 2024

🤖 Hello there,

We just published version 6.24.1 which involves this issue. If you'd like to take it for a test run please try it out and let us know what you think!

Thanks!

@brophdawg11 brophdawg11 removed the awaiting release This issue have been fixed and will be released soon label Jul 3, 2024
@maheese maheese mentioned this issue Jul 22, 2024
Open
@annalbrecht annalbrecht mentioned this issue Jul 24, 2024
Open
6TELOIV added a commit to 6TELOIV/website that referenced this issue Nov 25, 2024
@6TELOIV
Remove polyfill.io script
2b613bf 
Polyfill.io has been compromised and should not be used. https://www.bleepingcomputer.com/news/security/polyfillio-javascript-supply-chain-attack-impacts-over-100k-sites/
formatjs/formatjs#4363
sampotts/plyr#2799
remix-run/react-router#11733
@6TELOIV 6TELOIV mentioned this issue Nov 25, 2024
Merged
Haroenv pushed a commit to yarnpkg/website that referenced this issue Nov 25, 2024
@6TELOIV
Remove polyfill.io script (#1230)
f82b8a0 
Polyfill.io has been compromised and should not be used. https://www.bleepingcomputer.com/news/security/polyfillio-javascript-supply-chain-attack-impacts-over-100k-sites/
formatjs/formatjs#4363
sampotts/plyr#2799
remix-run/react-router#11733
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Assignees
No one assigned
Labels
docs
Projects
None yet
Milestone
No milestone
Development

Successfully merging a pull request may close this issue.

Remove polyfil.io reference from warning message remix-run/react-router
2 participants
@brophdawg11 @pvdstel