v1bh0r
commented
6 years ago Closed v1bh0r closed 5 years ago
v1bh0r
commented
6 years ago 
Gby56
commented
6 years ago Really hoping the project lives on, so far it's looking almost dead :(
mike-goodwin
commented
5 years ago Thanks for your interest in Threat Dragon - you are right, it was almost dead, but I'm trying to revive it :)
I'm closing this issue since I updated the production dependencies to remove all the possible vulnerabilities. At the time of writing Snyk is showing 2 vulns. One is High severity due to express-bunyan-logger which is unpatched at present in the package repo. The other is Medium, due tojQuery/JointJS - I can't update this at the moment as it causes lots of breaking changes and the JointJS docs are not updated to the most recent version yet.
I will monitor both and patch when available.
Note: npm audit still shows lots of vulnerabilities, but apart from the ones listed above, they are in dev-dependencies and I'm not prioritising them at this time. If you feel they present a significant risk, please re-open this or submit a new issue.