precise-ui
precise-ui copied to clipboard
Published
20 hours ago •
ZEISS
ZEISS
Upgrade `react-styleguidist`
New Feature Proposal
Description
I suggest upgrading react-styleguidist to use all new features along with other optimizations. The current version used by precise-ui is ^8.0.6, which kinda out-of-date. The latest stable is 10.6.1. The current version also contains a vulnerability issue:
=== npm audit security report ===
# Run npm install --save-dev [email protected] to resolve 1 vulnerability
SEMVER WARNING: Recommended action is a potentially breaking change
┌───────────────┬──────────────────────────────────────────────────────────────┐
│ Moderate │ Cross-Site Scripting │
├───────────────┼──────────────────────────────────────────────────────────────┤
│ Package │ serialize-javascript │
├───────────────┼──────────────────────────────────────────────────────────────┤
│ Dependency of │ react-styleguidist [dev] │
├───────────────┼──────────────────────────────────────────────────────────────┤
│ Path │ react-styleguidist > copy-webpack-plugin > │
│ │ serialize-javascript │
├───────────────┼──────────────────────────────────────────────────────────────┤
│ More info │ https://npmjs.com/advisories/1426 │
└───────────────┴──────────────────────────────────────────────────────────────┘
found 1 moderate severity vulnerability in 3000232 scanned packages
1 vulnerability requires semver-major dependency updates.
Background
- adds the opportunity to use new features;
- fixes vulnerability issue;
- improves DX (easily to read docs for the last version);
- brings build time optimizations;
- gives the picture that the project is constantly maintaining;
UI
The kitchen sink may change the UI a little bit.
