The dependency minimist "^1.2.3" is declared as vulnerable need to update to 1.2.6 or more

karma-runner / karma-mocha

A Karma plugin. Adapter for Mocha testing framework.

MIT License

379 stars 94 forks source link

Open vijayramasani opened 2 years ago

vijayramasani commented 2 years ago

The dependency minimist "^1.2.3" is declared as vulnerable need to update to 1.2.6 or more

djphan commented 2 years ago

It looks like the bot created a PR for the dependencies. It'll be nice to get this https://github.com/karma-runner/karma-mocha/pull/251 merged in by a maintainer and/or hard lock the version to 1.2.6