NPM security audit has flagged react-redux-subspace as having a denial-of-service vulnerability in its' recompose dependency:
$ npm audit
=== npm audit security report ===
Low Denial of Service
Package node-fetch
Patched in >=2.6.1 <3.0.0-beta.1|| >= 3.0.0-beta.9
Dependency of react-redux-subspace
Path react-redux-subspace > recompose > fbjs > isomorphic-fetch > node-fetch
More info https://npmjs.com/advisories/1556
It appears that 'react-redux-subspace' is using recompose's 'wrapDisplayName' function as its only dependency. Since it does not look like recompose is currently being maintained, it looks as though 'wrapDisplayName' could be refactored into a hook/helper function, which would remove the need for recompose to be used as a dependency.
NPM security audit has flagged react-redux-subspace as having a denial-of-service vulnerability in its' recompose dependency:
$ npm audit === npm audit security report === Low Denial of Service
Package node-fetch
Patched in >=2.6.1 <3.0.0-beta.1|| >= 3.0.0-beta.9
Dependency of react-redux-subspace
Path react-redux-subspace > recompose > fbjs > isomorphic-fetch > node-fetch More info https://npmjs.com/advisories/1556
It appears that 'react-redux-subspace' is using recompose's 'wrapDisplayName' function as its only dependency. Since it does not look like recompose is currently being maintained, it looks as though 'wrapDisplayName' could be refactored into a hook/helper function, which would remove the need for recompose to be used as a dependency.
ie (quickly off the top of my head):