moment is reported by Snyk as vulnerable and an be safely updated to the next minor version
lodash.template is reported by Snyk as vulnerable. It's also not being used anywhere in code and can be safely deleted.
react-textarea-autosize seem to be breaking CI by attempting to evaluate global variable that is not available in all environments. It can not be updated to the latest version, but it could safely updated to previous major version.
postcss is updated to v8, but given how testing is implemented, it might need careful manual inspection to ensure no degradation happened
express was removed. We don't use it anywhere directly.
I've also attempted to update axios as it's also reported as being vulnerable by Snyk, but the package transitioned to using ESM and is incompatible with our current build system.
momentis reported by Snyk as vulnerable and an be safely updated to the next minor versionlodash.templateis reported by Snyk as vulnerable. It's also not being used anywhere in code and can be safely deleted.react-textarea-autosizeseem to be breaking CI by attempting to evaluate global variable that is not available in all environments. It can not be updated to the latest version, but it could safely updated to previous major version.postcssis updated to v8, but given how testing is implemented, it might need careful manual inspection to ensure no degradation happenedexpresswas removed. We don't use it anywhere directly.I've also attempted to update
axiosas it's also reported as being vulnerable by Snyk, but the package transitioned to using ESM and is incompatible with our current build system.