Bauer-Xcel-Media
chore: put latest `lodash` version explicitly to `devDependencies`
test: description now doesn't return promise as required by latest jest version.
WORK IN PROGRES - please don't merge yet
... as we'll still get the security alerts because of https://github.com/nodejs/node-gyp/pull/1718.
The [email protected] release is planned ~10-th of May.
Codecov Report
Merging #34 into development will not change coverage. The diff coverage is
n/a.
@@ Coverage Diff @@
## development #34 +/- ##
==========================================
Coverage 100% 100%
==========================================
Files 17 17
Lines 401 401
Branches 75 75
==========================================
Hits 401 401
Continue to review full report at Codecov.
Legend - Click here to learn more
Δ = absolute <relative> (impact),ø = not affected,? = missing dataPowered by Codecov. Last update e40bb67...d14dbdc. Read the comment docs.
![codecov[bot] avatar](https://avatars.githubusercontent.com/in/254?v=4 "Published by a pub.dev verified publisher"){kind=small}
Just an FYI, you can now create (since February) draft pull requests so PRs that are still in progress don't accidentally get merged. Scroll to the bottom heret: https://help.github.com/en/articles/creating-a-pull-request.
Still on this because of https://github.com/npm/cli/pull/198 and then a dependency chain:
semantic-release > @semantic-release/npm > npm > npm-lifecycle > node-gyp > fstream
The good in bad is that all this mess concerns the devDependencies only, so - there are no security issues in the runtime context.