search

gstroup / apimocker

node.js module to run a simple http server for mock service responses.
MIT License
280 stars 80 forks source link

Update production dependencies #131

Closed twalker closed 1 year ago

twalker commented 1 year ago

Updates the top level dependencies to latest versions. These updates will supplant several PRs opened by dependabot.

Some of the outdated dependencies, such as multer, express, and underscore, have reported security vulnerabilities with the specified versions. The security advisories bubble up to consumers of this library.

Before:

on master $ npm audit --production   
... 
found 9 vulnerabilities (1 moderate, 5 high, 3 critical)

After:

on update-deps $ npm audit --production   
... 
found 1 high severity vulnerability in 106 scanned packages

I verified the unit tests continue to pass.

@gstroup, if you are fine with these updates, would you mind publishing a new version once merged?

gstroup commented 1 year ago

Just published v1.1.5. Wow, first time in a while. Thanks @twalker !

twalker commented 1 year ago

Thank you @gstroup , I hope all is well.