rushstack
rushstack copied to clipboard
Published
20 hours ago •
microsoft
microsoft
[node-core-library] Update fs-extra dependency
trafficstars
Summary
We are using rush-lib in some of our own tools. rush-lib indirectly depends on [email protected] via node-core-library (see package.json). Since [email protected] was published 6 years ago and newer versions exist, we are getting findings in some compliance checks for open source dependencies.
Additional information
rush-pnpm why --filter one-of-our-internal-tools fs-extra
@microsoft/rush-lib 5.138.0
├─┬ @rushstack/heft-config-file 0.15.7
│ ├─┬ @rushstack/node-core-library 5.9.0
│ │ └── fs-extra 7.0.1
│ └─┬ @rushstack/terminal 0.14.2
│ └─┬ @rushstack/node-core-library 5.9.0
│ └── fs-extra 7.0.1
├─┬ @rushstack/node-core-library 5.9.0
│ └── fs-extra 7.0.1
├─┬ @rushstack/package-deps-hash 4.2.3
│ └─┬ @rushstack/node-core-library 5.9.0
│ └── fs-extra 7.0.1
├─┬ @rushstack/package-extractor 0.9.4
│ ├─┬ @rushstack/node-core-library 5.9.0
│ │ └── fs-extra 7.0.1
│ └─┬ @rushstack/terminal 0.14.2
│ └─┬ @rushstack/node-core-library 5.9.0
│ └── fs-extra 7.0.1
└─┬ @rushstack/rush-amazon-s3-build-cache-plugin 5.138.0
├─┬ @rushstack/node-core-library 5.9.0
│ └── fs-extra 7.0.1
└─┬ @rushstack/rush-sdk 5.138.0
├─┬ @rushstack/node-core-library 5.9.0
│ └── fs-extra 7.0.1
├─┬ @rushstack/package-deps-hash 4.2.3
│ └─┬ @rushstack/node-core-library 5.9.0
│ └── fs-extra 7.0.1
└─┬ @rushstack/terminal 0.14.2
└─┬ @rushstack/node-core-library 5.9.0
└── fs-extra 7.0.1
Standard questions
Please answer these questions to help us investigate your issue more quickly:
| Question | Answer |
|---|---|
| Package name: | @rushstack/node-core-library |
| Package version? | 5.9.0 |
| Operating system? | Linux |
| Would you consider contributing a PR? | Yes |
Node.js version (node -v)? |
20.18.1 |
