wrappy icon indicating copy to clipboard operation
wrappy copied to clipboard
verified publisher icon isaacs

Update dependencies and Travis metadata

Open anko opened this issue 5 years ago • 1 comments

What / Why

Sweeping floors, dusting surfaces, patching vulns. :hammer_and_wrench:

  • Old tap pulls in deps that have vulnerabilities like https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-7598 (I had an npm audit warning about this, and tracked it down to here...)
  • A bunch of packages on npm depend on this one. Weekly downloads still increasing. https://www.npmjs.com/package/wrappy
  • Having Travis just target whatever is newest Node + LTS should ease maintenance burden.

References

n/a

anko avatar Mar 15 '20 18:03 anko

@isaacs

erfantkerfan avatar Sep 03 '22 09:09 erfantkerfan