fork: node-java-maven to provide updated version

[naxmefy]

• last published 2 years ago - https://www.npmjs.com/package/node-java-maven
• got vulnerabilities
  • [email protected] requires async@^0.9.0 (same in [email protected] - @2.6.1) (The earliest fixed version is 2.6.4.)
  • [email protected] requires [email protected] via a transitive dependency on [email protected] (The earliest fixed version is 0.4.0.)

[turkishmaid]

Any news on that one? I get

# npm audit report

async  <2.6.4
Severity: high
Prototype Pollution in async - https://github.com/advisories/GHSA-fwr7-v2mv-hh25
No fix available
node_modules/async
node_modules/node-java-maven/node_modules/async
  java  0.5.1 - 0.12.2 || >=5.0.1
  Depends on vulnerable versions of async
  node_modules/java
  node-java-maven  *
  Depends on vulnerable versions of async
  node_modules/node-java-maven
    @naxmefy/jdbc  *
    Depends on vulnerable versions of node-java-maven
    node_modules/@naxmefy/jdbc

4 high severity vulnerabilities

To address all issues possible (including breaking changes), run:
  npm audit fix --force

Some issues need review, and may require choosing
a different dependency.

when npm installing naxmefy/jdbc with package.json like so:

  "dependencies": {
    "@naxmefy/jdbc": "^0.13.3",
    "java": "^0.12.2"
  },

With java ^5.0.1 I get

npm ERR! ../../nan/nan_new.h:92:12: error: no template named 'Handle' in namespace 'v8'
npm ERR!      , v8::Handle<v8::Value> data = v8::Handle<v8::Value>()
npm ERR!        ~~~~^
npm ERR! fatal error: too many errors emitted, stopping now [-ferror-limit=]

so I think that's not the way for me :)

[naxmefy]

With java ^5.0.1 I get

is there a Version 5.0.1? Do you mean the JDK 5?

I may take some time to fork it - but if you got some time - you could do it as well :)