Uncontrolled Resource Consumption in ansi-html (CVE-2021-23424) is a vulnerability that won’t be fixed by the project’s author, since it’s been abandoned and there won’t be a patched version of ansi-html.
Fixing the ansi-html vulnerability
You need to replace ansi-html with ansi-html-community in your package.json like this:
and import it like this:
A good example of implementing the fix is this commit: fix: replace ansi-html with ansi-html-community
Have fun and be safe! 🙂