Updates many out of date packages, resolving every vulnerability from npm audit apart from a few in the API project that require more work to resolve.
Updates HTMLHint and fixes breaking changes in its imports.
Locks all versions of node to v20 (latest LTS) across the project as it's currently inconsistent and using different older versions.
The remaining vulnerabilities from the API project are related to a deprecated azure-storage package that requires migrating and refactoring to new packages. There's a PBI for this here: https://github.com/SSWConsulting/SSW.CodeAuditor/issues/918
❌ Figure: UI project previously had 9 vulnerabilities
❌ Figure: Docker project previously had 21 vulnerabilities
❌ Figure: API project previously had 24 vulnerabilities
✅ Figure: UI project now has 0 vulnerabilities
✅ Figure: Docker project now has 0 vulnerabilities
✅ Figure: API project now has 4 moderate vulnerabilities
npm auditapart from a few in the API project that require more work to resolve.The remaining vulnerabilities from the API project are related to a deprecated
azure-storagepackage that requires migrating and refactoring to new packages. There's a PBI for this here: https://github.com/SSWConsulting/SSW.CodeAuditor/issues/918❌ Figure: UI project previously had 9 vulnerabilities
❌ Figure: Docker project previously had 21 vulnerabilities
❌ Figure: API project previously had 24 vulnerabilities
✅ Figure: UI project now has 0 vulnerabilities
✅ Figure: Docker project now has 0 vulnerabilities
✅ Figure: API project now has 4 moderate vulnerabilities