Open Myky8 opened 3 years ago
We already are on 2024-august and still getting high severity vulnerabilities from dependencies used :(
npm i cucumber-html-reporter
outputs the following:
npm warn deprecated inflight@1.0.6: This module is not supported, and leaks memory. Do not use it. Check out lru-cache if you want a good and tested way to coalesce async requests by a key value, which is much more comprehensive and powerful.
npm warn deprecated glob@7.2.3: Glob versions prior to v9 are no longer supported
npm warn deprecated uuid@3.4.0: Please upgrade to version 7 or higher. Older versions may use Math.random() in certain circumstances, which is known to be
problematic. See https://v8.dev/blog/math-random for details.
added 60 packages, and audited 246 packages in 15s
32 packages are looking for funding
run `npm fund` for details
3 high severity vulnerabilities
My npm list
is as follows:
playwright@1.0.0
├── @cucumber/cucumber@10.8.0
├── @playwright/test@1.46.0
├── @types/cucumber-html-reporter@5.0.1
├── @types/node@22.1.0
├── cucumber-html-reporter@7.1.1
├── playwright@1.46.0
├── ts-node@10.9.2
└── typescript@5.5.4
And node --version
is v20.11.0
.
In installation of cucumber-html-reporter 5.4.0 appear warning from dependency uuid:
warning cucumber-html-reporter > uuid@3.4.0: Please upgrade to version 7 or higher. Older versions may use Math.random() in certain circumstances, which is known to be problematic.