node-twitter-api-v2 icon indicating copy to clipboard operation
node-twitter-api-v2 copied to clipboard
verified publisher icon PLhery

Fix several security vulnerabilities

Open nolbuzanis opened this issue 3 years ago • 1 comments

Fixed all found via npm audit.

Note: Mocha is updated to 9.2.2 from 8.x.x, with breaking changes.

TLDR Dropping Node.js v10.x support - does not matter since we use 14.x Import-first loading of test files - does not matter since all test files already use import

nolbuzanis avatar Apr 07 '22 04:04 nolbuzanis

Considering this package hasn't any public dependencies, npm audit result don't make sense, only dev packages are affected. I can accept it but can you please generate the lockfile in its original version (2)? You need a recent version of npm.

alkihis avatar Apr 07 '22 05:04 alkihis