There are security vulnerabilities in many child dependancies

foliojs / fontkit

An advanced font engine for Node and the browser

1.48k stars 219 forks source link

There are security vulnerabilities in many child dependancies #271

Closed AbhaySBhosale closed 2 years ago

AbhaySBhosale commented 2 years ago

Many of child dependancies have the vulnerabilities, We did scan with blackduck and found below libraries have vulnerabilities

browserify, brfs, brotli etc font-kit version: 1.8.0

devongovett commented 2 years ago

It's on my list to modernize the build system, but I've been quite busy lately. Would you like to send a PR to remove the browserify related deps (brfs, browserify-optional) and config options in the package.json? I think we can safely drop that at this point.

fjf2002 commented 2 years ago

I use @foliojs-fork/pdfkit / @foliojs-fork/fontkit