-
At the moment we just have Font Awesome, Bootstrap, jQuery and other
JavaScript files just being uploaded to repository. It makes updating and
managing it a bit harder and also makes repository a bi…
-
溜まってしまって良くないので。
-
Please see attached
![image](https://user-images.githubusercontent.com/14722250/134363300-f3187d21-7317-49a0-b61a-9bca3513366d.png)
-
corepack supports downloading the package managers from a source that is not npm. I think this is a significant security risk for our users and we should only download them from npm (or another 3rd pa…
-
In addition to listing out the Javascript version information to identify out of date versions (#96), is it possible to determine if there are any security issues for that javascript library?
@john…
-
**Describe the bug**
Package.json requires an older version of firebase which includes an unsecured version of node-fetch.
Best if you upgrade to 9.6.x
https://firebase.google.com/support/release-n…
-
### What is the issue that you're experiencing?
I am trying to follow the instructions on https://moodledev.io/general/documentation/installation so I can contribute to devdocs from my normal Work …
-
**Describe the bug**
The lighthouse audit thresholds set in my .gimbalrc.yml seem to be ignored when running the audit command, and command `gimbal audit` runs and produces a report but exits with an…
-
## Type of issue
----
## My environment
* *OS version/details*: `Ubuntu 20.04`
* *Node version:* `v14.16.1` (run `node --version` in your terminal)
* *npm version:* `7.16.0` (ru…
-
This repo seems to be inactive since many years.
Some of the dependencies are vulnerable :
```
https://snyk.io/advisor/npm-package/got
https://snyk.io/advisor/npm-package/marked
```
Any upda…