10
Affected versions of the package are vulnerable to Cross-site Scripting (XSS). If the application has a 'name="scripts"' this will shadow the built-in 'document.scripts'.
You're affected if you are using a version which is within vulnerability ranges.
Upgrade astro library to patch version.