moment is reported by Snyk as vulnerable and an be safely updated to the next minor version
lodash.template is reported by Snyk as vulnerable. It's also not being used anywhere in code and can be safely deleted.
react-textarea-autosize seem to be breaking CI by attempting to evaluate global variable that is not available in all environments. It can not be updated to the latest version, but it could safely updated to previous major version.
postcss is updated to v8, but given how testing is implemented, it might need careful manual inspection to ensure no degradation happened
express was removed. We don't use it anywhere directly.
I've also attempted to update axios as it's also reported as being vulnerable by Snyk, but the package transitioned to using ESM and is incompatible with our current build system.
moment
is reported by Snyk as vulnerable and an be safely updated to the next minor versionlodash.template
is reported by Snyk as vulnerable. It's also not being used anywhere in code and can be safely deleted.react-textarea-autosize
seem to be breaking CI by attempting to evaluate global variable that is not available in all environments. It can not be updated to the latest version, but it could safely updated to previous major version.postcss
is updated to v8, but given how testing is implemented, it might need careful manual inspection to ensure no degradation happenedexpress
was removed. We don't use it anywhere directly.I've also attempted to update
axios
as it's also reported as being vulnerable by Snyk, but the package transitioned to using ESM and is incompatible with our current build system.