The library "prompt" for the simple test script requires another lib with a security bug. The automatic snyk test tool flags this as low severity. As both libs (prompt and utile) are not updated for a long time Stefan Seide changed the np.js script to use another more actively maintained library without security warning.
jpmens
commented
6 years ago
The library "prompt" for the simple test script requires another lib with a security bug. The automatic snyk test tool flags this as low severity. As both libs (prompt and utile) are not updated for a long time Stefan Seide changed the np.js script to use another more actively maintained library without security warning.
✗ Low severity vulnerability found in utile Description: Uninitialized Memory Exposure Info: https://snyk.io/vuln/npm:utile:20180614 Introduced through: mosquitto-pbkdf2@0.2.1 From: mosquitto-pbkdf2@0.2.1 > prompt@1.0.0 > utile@0.3.0