search

atlassian-labs / react-resource-router

Configuration driven routing solution for React SPAs that manages route matching, data fetching and progressive rendering
https://atlassian-labs.github.io/react-resource-router
Apache License 2.0
202 stars 28 forks source link

fix devDep vulns #156

Closed jackbrown closed 2 years ago

jackbrown commented 2 years ago

Upgrading and removing vulnerable devDeps in order to close vulns

Before the changes:

~/git/react-resource-router master *1 !1 ?1                                                                                               38s 14:06:26
❯ npm audit --production

                       === npm audit security report ===

found 0 vulnerabilities
 in 8 scanned packages

And for devDeps:

found 215 vulnerabilities (3 low, 74 moderate, 120 high, 18 critical) in 1967 scanned packages

After the changes:

❯ npm audit --production

                       === npm audit security report ===

found 0 vulnerabilities
 in 8 scanned packages

And for devDeps:

found 6 vulnerabilities (2 moderate, 4 high) in 2133 scanned packages