I see a lot of npm warnings for deprecations, etc. when using npx create-bottender-app bot, which makes me a bit concerned about potential security issues, etc that might result from these older versions.
npm WARN deprecated @types/figures@3.0.1: This is a stub types definition. figures provides its own type definitions, so you do not need this installed.
? What platform of bot do you want to create? slack
? Where do you want to store session? redis
❯
❯ Creating a new Bottender bot at /Users/spkane/dev/spkane/bot.
❯
❯ Installing packages... This might take a couple of minutes.
❯
warning bottender > @hapi/joi@15.1.1: Switch to 'npm install joi'
warning bottender > @types/mongodb > @types/bson@4.2.0: This is a stub types definition. bson provides its own type definitions, so you do not need this installed.
warning bottender > @hapi/joi > @hapi/address@2.1.4: Moved to 'npm install @sideway/address'
warning bottender > @hapi/joi > @hapi/topo@3.1.6: This version has been deprecated and is no longer supported or maintained
warning bottender > @hapi/joi > @hapi/bourne@1.3.2: This version has been deprecated and is no longer supported or maintained
warning bottender > @hapi/joi > @hapi/hoek@8.5.1: This version has been deprecated and is no longer supported or maintained
warning bottender > @hapi/joi > @hapi/topo > @hapi/hoek@8.5.1: This version has been deprecated and is no longer supported or maintained
warning bottender > ngrok > uuid@3.4.0: Please upgrade to version 7 or higher. Older versions may use Math.random() in certain circumstances, which is known to be problematic. See https://v8.dev/blog/math-random for details.
warning bottender > ngrok > request@2.88.2: request has been deprecated, see https://github.com/request/request/issues/3142
warning bottender > ngrok > request > uuid@3.4.0: Please upgrade to version 7 or higher. Older versions may use Math.random() in certain circumstances, which is known to be problematic. See https://v8.dev/blog/math-random for details.
warning bottender > ngrok > request-promise-native@1.0.9: request-promise-native has been deprecated because it extends the now deprecated request package, see https://github.com/request/request/issues/3142
Answer What platform of bot do you want to create? with slack
Answer Where do you want to store session? with memory
Expected behavior
In general, I would like to see no warnings about deprecated or unsupported libraries. This does not mean hiding them, of course, but keeping things current and secure.
Describe the bug
I see a lot of
npmwarnings for deprecations, etc. when usingnpx create-bottender-app bot, which makes me a bit concerned about potential security issues, etc that might result from these older versions.To Reproduce Steps to reproduce the behavior:
npx create-bottender-app appWhat platform of bot do you want to create?withslackWhere do you want to store session?withmemoryExpected behavior
In general, I would like to see no warnings about deprecated or unsupported libraries. This does not mean hiding them, of course, but keeping things current and secure.