Closed reshamas closed 1 year ago
@reshamas, the first EBADENGINE error is because we had the local development environment pinned to a newer version of node than what is being used in production. In this case it didn't actually break the library. However, it is good practice to make sure the version match between dev and prod. I merged in a PR to pin to an older version of node https://github.com/data-umbrella/event-board-web/pull/408. You just need to do the following to resolve that error.
nvm install 16.20.0
nvm use
The second issue is a built in functionality of npm that is always checking for security vulnerabilities. I've open a PR to apply all the non-breaking changes from run npm audit --fix
https://github.com/data-umbrella/event-board-web/pull/409. Any of the breaking changes we will have to look into individually.
We can also set up https://github.com/dependabot to automatically attempt to upgrade dependencies and open a PR for the upgrades.
I've added a section to the contributing guide about managing dependencies. Going to close this issue as we are burning down to the actionable tasks and follow up items. If there are more questions related to management dependencies we can open a new ticket / pull request.
How do we interpret these errors/warnings? Should we run the audit fix?
REF: https://github.com/data-umbrella/event-board-web/blob/main/CONTRIBUTING.md