[x] fhir -> Used yarn resolutions for lodash and xmlbuilder
Dependencies with High vulnerabilities:
[x] tap -> Bumped up from 12.6 to 14.10
[x] mongodb -> Bumped up from 2.2.22 to 3.5.4
[x] codecov -> Bumped up from 3.6.1 to 3.8.3
[x] nconf -> Bumped up from 0.10.0 to 0.11.3
[x] libxmljs -> Already at the latest version that is currently available so need to use yarn resolutions for its dependencies
[x] node-pre-gyp -> This package is now deprecated
[x] tar -> Added resolution for tar 4.4.19
[x] ini
Dependencies with Moderate vulnerabilities:
[x] snazzy -> Bumped up from 8.0.0 to 9.0.0
[x] standard -> Bumped up from 11.0.0 to 16.0.4
[x] tap -> Bumped up from 14.10 to 15.2.3
[x] urijs -> Bumped up from 1.19.2 to 1.19.10
[x] jsprim -> Bumped up from 1.4.1 to 1.4.2
Node engine limitation
Previously hearth was limited to using node >= 6.9.0 and < 9.0.0 because using anything newer
would cause the build process to fail. The issue was actually with fhir->libxmljs->nan and using
libxmljs >= 0.18.8 made it possible to remove the engine limitation.
Dependencies with Critical vulnerabilities:
Dependencies with High vulnerabilities:
Dependencies with Moderate vulnerabilities:
Node engine limitation
Previously hearth was limited to using node >= 6.9.0 and < 9.0.0 because using anything newer would cause the build process to fail. The issue was actually with fhir->libxmljs->nan and using libxmljs >= 0.18.8 made it possible to remove the engine limitation.
Now it works with node v14.18.1