Gareth Jones
Gareth Jones
The actual fix for this is to update all versions of `globals` in your dependency tree, which you can typically do with `npm update globals` though you might need to...
hi @serhalp 👋 would it be possible to get this or #39135 landed? as it addresses GHSA-pxg6-pf52-xh8x
fwiw @another-rex I was going to mention this at our next catchup - I'd not yet dug into it, but I felt like the NPM database was taking longer to...
ok so I found an old version of the database locally, so comparing that: | date | files | size | | ----------------------------- | ------ | --------- | | Thu,...
We've decided to switch to the Rails default since we don't think there's an immediate or significant security issue and it means a slightly smaller diff for future Rails upgrades
would you mind undoing all the formatting changes you've made?
@devongovett it would be good if there could be some movement on this, as it's forcing us to re-evaluate if we stick with Parcel as our build tool. Personally, I've...
fwiw I've thought about it a bit more and I think ideally it would be good if the next major would actually change the dependency range for Jest to be...
@zmanion thanks for the feedback - this issue is just about adding vanilla CMSS as a valid severity type to the spec, which would allow us to enrich our OSV...
yeah I guess I could see this being useful - not sure about the name though, maybe something like `pair-to-have-been-called-assertions`?