search

Okazari / Rythm.js

A javascript library that makes your page dance.
https://okazari.github.io/Rythm.js/
GNU General Public License v3.0
3.93k stars 252 forks source link

Update deps #121

Closed papey closed 2 years ago

papey commented 4 years ago

A yarn update to fix a lot of vulnerabilities issues.

Linked to #120

From :

Severity: 473 Low | 7 Moderate | 420 High | 1 Critical

to :

Severity: 6 Low | 2 Moderate | 12 High | 1 Critical

I could go deeper but there is things I do not understand.

Many of the remaining vulnerabilities are related to :

  1. gulp
  2. gulp-webserver
  3. watch-http-server

Do you still use gulp ? Looks like there is no Gulpfile.js file. If not used anymore, I will remove it as well as gulp-webserver.

watch-http-server also seems broken maybe there is a better alternative.

Thanks for your feedback.

Okazari commented 3 years ago

Wow ! I'm so sorry i totally missed this PR ! I will try to test that ASAP :sweat_smile:.