Open MichaelMarkieta opened 6 years ago
I recommend using a service such as Dependabot to help with this, and with staying secure with other dependencies too. They offer the service for free for open source projects.
EDIT: Noticed Jul 4 that Dependabot is active already. Can disregard.
https://github.com/google/zazu/blob/85d6b2ad577cad2fedc7cc581a60b2ca9635e4c9/server.js#L16