You are viewing a plain text version of this content. The canonical link for it is here.

Posted to notifications@couchdb.apache.org by GitBox <gi...@apache.org> on 2019/07/13 03:06:43 UTC

[GitHub] [couchdb-fauxton] Antonio-Maranhao edited a comment on issue #1209: WIP - Update packages to fix npm audit issues

Antonio-Maranhao edited a comment on issue #1209: WIP - Update packages to fix npm audit issues
URL: https://github.com/apache/couchdb-fauxton/pull/1209#issuecomment-510956377
 
 
   Changing status to WIP because of https://www.npmjs.com/advisories/1012 released today.
   `npm audit` is now raising 8k+ vulnerabilities because of `set-value` which is deep down the dependency tree, and `npm audit fix` is not able to fix it. 
   I'll come back to this in a few days - hopefully by then the more high level packages will release fixes.
   
   Edit: Jest is the top package that has most of the vulnerabilities listed and there's an issue for it:  https://github.com/facebook/jest/issues/8682

----------------------------------------------------------------
This is an automated message from the Apache Git Service.
To respond to the message, please log on to GitHub and use the
URL above to go to the specific comment.
 
For queries about this service, please contact Infrastructure at:
users@infra.apache.org


With regards,
Apache Git Services