Currently during my normal scans I am receiving a high vulnerability on my front end ECR image.
It is showing:
As you can see it registers the installed version equal to the fixed version.
My npm package has the following:
"xlsx": "https://cdn.sheetjs.com/xlsx-0.19.3/xlsx-0.19.3.tgz"
This is based on the recommendation found here: https://docs.sheetjs.com/docs/getting-started/installation/nodejs/
Is this just a bug or am I missing something? Any help would be truly appreciated.
