Status of the project & maintainer?

Question

Status of the project & maintainer?

tmikaeld opened this issue 5 years ago · 5 comments

I'm worried that something might have happened to the Maintainer, I see no activity since April 2018 except for some bot that's committing to a repo every month.

More than 350 projects on NPM depend entirely on this library, a lof of high-profile companies too, like Fabric, Microsoft, Bitcore, Wire, Mozilla etc.

And there's even a Vulnerability that's not addressed + pull requests that haven't been checked.

Answer 1 · 2020-03-11T09:13:50.000Z

https://twitter.com/davedoesdev/status/1237667966491205632

Answer 2 · 2020-03-25T13:24:29.000Z

@davedoesdev Seems to be only a bot that's active on the account.

Answer 3 · 2020-03-26T17:37:27.000Z

I'm going to deprecate https://github.com/davedoesdev/node-jsjws and move my projects to libsodium.
There are decent libsodium JS modules.

Answer 4 · 2020-03-30T22:51:20.000Z

I've deprecated node-jsjws now and moved to libsodium (sodium-native or sodium-plus) and jose.

Answer 5 · 2020-03-31T10:28:54.000Z

Minerva vulnerability was mitigated in the 8.0.13 release today. Thanks.