Do not publish dev dependencies

jozefizso / generator-license

Yeoman Generator - License

MIT License

59 stars 20 forks source link

Closed springcomp closed 1 year ago

springcomp commented 1 year ago

Attempts to address #124.

jozefizso commented 1 year ago

Closing this PR as it only hides the fact the package has vulnerable dependencies.

The are tools in npm to filter out production and development dependencies and the correct fix is to update packages to bugfixed versions.