search

Azure / AppConfiguration-JavaScriptProvider

The configuration provider for consuming data in Azure App Configuration from JavaScript applications like Node or browser apps.
https://github.com/Azure/AppConfiguration
MIT License
9 stars 2 forks source link

Package-lock.json is out of date #97

Open zhiyuanliang-ms opened 2 months ago

zhiyuanliang-ms commented 2 months ago

There are two vulnerabilities in the package-lock. And the lockfileVersion is 2, after npm 8, the lockfileVersion should be 3.

Upgrade to typescript 5.6 will break the AzureAppConfigurationImpl because the ReadonlyMap API changed.

Eskibear commented 2 months ago

lockfileVersion doesn't block you from fixing the vulnerabilities. Three tasks mentioned above, suggest to do them separately.

Upgrade to typescript 5.6 will break ... the ReadonlyMap API changed.

Interesting it's not following SemVer. Better go thru the TS 5.6 release notes to figure out what's changed first.