yargs-parser@11.1.1 (from yargs@12.0.5) is vulnerable to prototype pollution. This PR bumps yargs to 15.3.1 which resolves audit pipelines that may be reporting a vulnerability in @jest-runner/rpc. This could be a breaking change since it drops support for Node 6.
yargs-parser@11.1.1
(fromyargs@12.0.5
) is vulnerable to prototype pollution. This PR bumpsyargs
to 15.3.1 which resolves audit pipelines that may be reporting a vulnerability in@jest-runner/rpc
. This could be a breaking change since it drops support for Node 6.