Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

bump dependencies to fix security issues #672

Closed
wants to merge 2 commits into from

Conversation

kdenhartog
Copy link

This was done by running the following commands:

nvm install v14
nvm use v14
yarn upgrade --latest

It drops the number of dependencies that show up from yarn audit from 57 to 26.

@kdenhartog kdenhartog force-pushed the kdh/bump-dev-dependencies branch from 09d7bf5 to a8aaf36 Compare June 27, 2022 06:33
@kdenhartog kdenhartog force-pushed the kdh/bump-dev-dependencies branch from a8aaf36 to 341d320 Compare June 27, 2022 06:37
@kdenhartog
Copy link
Author

this should probably be ran again now after two months

@kdenhartog kdenhartog changed the title bump dev dependencies to fix security issues bump dependencies to fix security issues Aug 29, 2022
@kdenhartog
Copy link
Author

@krisk I've re-bumped using yarn upgrade rather than yarn upgrade --latest because latest major updates seem to include breaking changes.

@krisk
Copy link
Owner

krisk commented Jul 9, 2023

Should all be addressed as part of #711

@krisk krisk closed this Jul 9, 2023
@kdenhartog kdenhartog deleted the kdh/bump-dev-dependencies branch July 9, 2023 05:09
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Labels
None yet
Projects
None yet
Development

Successfully merging this pull request may close these issues.

2 participants