package.json dependency on "pure-gist-embed" involves a security vulnerability

[igal1c0de4n]

Apparently tui2tone/gist-embed (aka pure-gist-embed) hasn't been updated for several years now. It pulls axios with a known security vulnerability:

Maybe it's time to replace it (?)

[manuelgeek]

do you have an alternative in mind? @igal1c0de4n

[igal1c0de4n]

sorry - I don't have sufficient experience with the desired functionality nor with packages which may replace it