Update nodeJS dependencies to mitigate known vulnerabilities if possible

LeastAuthority / winden

Winden is a free web application for secure, fast, and easy file transfers between devices in real-time

MIT License

55 stars 4 forks source link

Update nodeJS dependencies to mitigate known vulnerabilities if possible #174

Open btlogy opened 9 months ago

btlogy commented 9 months ago

Working on #171, I've come across this logs:

added 2348 packages, and audited 2349 packages in 24s

272 packages are looking for funding
  run `npm fund` for details

39 vulnerabilities (18 moderate, 19 high, 2 critical)

To address issues that do not require attention, run:
  npm audit fix

In addition, should we not consider updating the base image from node:16-alpine to something more recent?