Hi,CVE-2025-66648 is just for vega.js 6.1.0 and fixed in 6.1.1, so vega.js isn't affected.
Best regards, Xavier Ref: https://github.com/vega/vega/security/advisories/GHSA-m9rg-mr6g-75gm
- CVE-2025-66648 -> not affected Xavier
- Re: CVE-2025-66648 -> not affected Salvatore Bonaccorso
- Re: CVE-2025-66648 -> not affected Xavier
- Re: CVE-2025-66648 -> not affected Xavier
- Re: CVE-2025-66648 -> not affecte... Xavier
- Re: CVE-2025-66648 -> not af... Salvatore Bonaccorso
