Closed frederikhors closed 3 years ago
Thank you for filing an issue! Please be patient. :-)
Hi there! Thanks for the question.
1.3.1 is on npm because that was the last change that had a version bump.
As for what npm 7 is telling you -- It looks like for some reason it thinks that any version higher than 0.0.2 will include snyk (this is probably correct), and snyk includes netmask, which apparently v2.0.1 and less, it finds disagreeable. If snyk has upgraded netmask in their dependencies, or whatever child of theirs needs it, then i could probably go ahead and do a dependency update patch release. There's another pull req for a highly recommended dep upgrade too, so maybe kill two birds with one stone there. I don't know right off hand how to see if snyk has solved that problem in their newest patches or not.
Ok. My question about 1.3.1
is because I cannot find this release in the list:
i haven't perfected the automatic release process, and i probably forgot to submit a tag :-) thanks for pointing it out
snyk has been removed, we're a couple of releases ahead now, i don't think there's much actionable here
Why do we have
v1.3.1
on npmjs?Why npm 7 is suggesting me to upgrade to
@ericblade/quagga2 @ 0.0.1
?Why
npm audit
shows the below?In my
package.json
I have this:which works great, but today I wanted to upgrade.