Fix third party vulnerabilities identified by npm-audit

Question

Fix third party vulnerabilities identified by npm-audit

Closed this issue 6 years ago · 2 comments

axle:solid-auth-oidc justin$ npm audit
...
found 16 vulnerabilities (15 low, 1 critical) in 5509 scanned packages
16 vulnerabilities require semver-major dependency updates.

Answer 1 · 2018-09-13T08:32:40.000Z

16 vulnerabilities require semver-major dependency updates.

OMG, teh insanity!!!!!1111oneeleven

Answer 2 · 2018-09-13T11:04:22.000Z

OK, I have updated this too. It turned out that these were all in nyc and mocha, and that limited the things that can go wrong in production, I suppose. But it sure is scary...

@justinwb , the changes that you made for #12 , is that ready for release? If so, major, minor or patch?