aivuk
commented
2 years ago I did update most of what was possible, but the biggest problem now (the high level security issue) is that the security packages are dependencies from Vuepress. I did update Vuepress to the latest 1 major version, but looks like they fixed it only on Vuepress 2. The migration to Vuepress is not straightforward, specially because the plugin from vuepress 1 are not compatible and we are using 6 plugins.
roll
Overview
There is a few issues - https://github.com/frictionlessdata/website/security/dependabot