Upgrade to Astro 6
>>> [!note] Migrated issue
<!-- Drupal.org comment -->
<!-- Migrated from issue #3588803. -->
Reported by: [tim.plunkett](https://www.drupal.org/user/241634)
Related to !1069
>>>
<h3 id="overview">Overview</h3>
<pre># npm audit report<br><br>astro <6.1.6<br>Severity: moderate<br>Astro: XSS in define:vars via incomplete </script> tag sanitization - https://github.com/advisories/GHSA-j687-52p2-xcff<br>fix available via `npm audit fix --force`<br>Will install astro@6.2.2, which is a breaking change<br>node_modules/astro<br> @astrojs/mdx <=0.0.0-vercel-upgrade-20230905174957 || 1.0.0-beta.0 - 4.3.14<br> Depends on vulnerable versions of astro<br> node_modules/@astrojs/mdx<br> @astrojs/starlight <=0.37.7<br> Depends on vulnerable versions of @astrojs/mdx<br> Depends on vulnerable versions of astro<br> node_modules/@astrojs/starlight<br><br>postcss <8.5.10<br>Severity: moderate<br>PostCSS has XSS via Unescaped </style> in its CSS Stringify Output - https://github.com/advisories/GHSA-qx2v-qp2m-jg93<br>fix available via `npm audit fix --force`<br>Will install @redocly/cli@2.18.2, which is a breaking change<br>node_modules/styled-components/node_modules/postcss<br> styled-components 6.1.3 - 6.4.0-prerelease.14<br> Depends on vulnerable versions of postcss<br> node_modules/styled-components<br> @redocly/cli <=0.0.0-snapshot.1777557756 || 1.34.7 - 1.34.14 || >=2.19.0<br> Depends on vulnerable versions of styled-components<br> node_modules/@redocly/cli</pre><h3 id="proposed-resolution">Proposed resolution</h3>
<h3 id="ui-changes">User interface changes</h3>
> Related issue: [Issue #3588801](https://www.drupal.org/node/3588801)
> Related issue: [Issue #3571806](https://www.drupal.org/node/3571806)
issue