search

FormidableLabs / babel-plugin-transform-define

Compile time code replacement for babel similar to Webpack's DefinePlugin
MIT License
245 stars 31 forks source link

Fix vulnerabilities found via npm audit #52

Closed GaxZE closed 5 years ago

GaxZE commented 6 years ago

Issue

Found the following when running npm install

added 504 packages from 282 contributors, updated 11 packages and audited 4150 packages in 10.457s
found 189 vulnerabilities (188 low, 1 critical)
  run `npm audit fix` to fix them, or `npm audit` for details

What I've done

I've updated package.json to secure the packages.

How to test

run npm test

  babel-plugin-transform-define
    transformation tests
      ✓ should transform Unary Expressions
      ✓ should transform Identifiers
      ✓ should transform false
      ✓ should transform 0
      ✓ should transform empty string
      ✓ should transform null
      ✓ should transform undefined
      ✓ should transform code from config in a file
      Member Expressions
        ✓ should transform with config defined by String keys
        ✓ should transform with config defined by an Object
    unit tests
      getSortedObjectPaths
        ✓ should return an array
        ✓ should return a complete list of paths
        ✓ should return a list sorted by length

  13 passing (253ms)

Result

npm audit

                       === npm audit security report ===

found 0 vulnerabilities
 in 4143 scanned packages
GaxZE commented 6 years ago

@boygirl as you closed #51 can you take a look at this?

simonstaton commented 5 years ago

Possible to get this merged in? This package is now failing npm audits due to lodash

pdf13 commented 5 years ago

Let's get this merged! 🚀

HofmannZ commented 5 years ago

LGTM

lvnilesh commented 5 years ago

Appreciate if you can please merge. Thanks.

GaxZE commented 5 years ago

New years resolution?!

boygirl commented 5 years ago

Sorry for the delay!