Js  scss-tokenizer is a 3th party library vulnerable in sonarqube

I'd analyze a project with sonarqube and dependency-check and the result was the library scss-tokenizer V 0.4.3 has a vulnerability. Will you release a new version without this vulnerability?

![scss-tokenizer](https://github.com/sasstools/scss-tokenizer/assets/132514336/6b2587f2-db08-4090-a255-811ef87fe8ca)
