Surnet
Remove yarn + fix security issues reported by npm audit
This MR contains following changes:
- Fixes security issues reported by npm audit
- Removes yarn (makes it easier to maintain package, since there's only one lock file to update)
- Removes package 'npm-run-all', which hasn't seen update in 6 years
- Update pipeline to test with node versions from 16.x to 22.x
Note: glob + jest updates raised the minimum node version to 16.x (but even that is already eol, so should not be that big of an issue)
I would advocate to keep yarn and remove npm (and the package-lock.json) as everything was already pointing to yarn.
but good work, took it to base my fork on
I updated this PR a bit.. Node 24 is added to testing matrix and glob version is updated as high as possible while keeping at least node 16 compatibility. Glob 11.x is for node versions 20 and onwards.
Also jest is updated to latest version, so it should be easier to switch to version 30 once it's out. That version should finally remove deprecated inflight dependency (see issue #227)
This issue has been automatically marked as stale because it has not had recent activity. It will be closed if no further activity occurs. Thank you for your contributions.
![stale[bot] avatar](https://avatars.githubusercontent.com/in/1724?v=4 "Published by a pub.dev verified publisher"){kind=small}
This issue has been automatically marked as stale because it has not had recent activity. It will be closed if no further activity occurs. Thank you for your contributions.