[BUG] Dependency package PDF.js vulnerability CVE-2024-4367

[kitshinghk-crypto]

Overview of the issue

One of the compodoc dependencies, PDF.js, is reported to have a high serverity vulnerability CVE-2024-4367.

Suggest a Fix

Upgrade the version of PDF.js to version 4.2.67 or configure isEvalSupported to false

[tchetwin]

Note: the commit above is not part of a release yet.
The last release was 1.1.24 on 23rd April