Help get this topic noticed by sharing it on Twitter, Facebook, or email.

site audit: Bootstrap@3.2.0 and jQuery@2.2.4 vulnerabilities detected

I ran my published sites (generated by COT 8.7.14) through Lighthourse chrome browser plugin
It generated some interesting results. It includes front-end JavaScript libraries with known security vulnerabilities:

- 5 Bootstrap@3.2.0 vulnerabilities. The latest version of Bootstrap is 4.3.1
- 2 jQuery@2.2.4 vulnerabilities. The latest version of jQuery is 3.4.1

Why COT not updating these components?
Is there a workaround or upcoming update?

It is important to mention that I ran the same audit on and it showed identical results.
1 person has
this problem