Closed ehmicky closed 6 years ago
npm audit produces the following warning:
npm audit
=== npm audit security report === # Run npm install --save-dev tap-spec@5.0.0 to resolve 1 vulnerability SEMVER WARNING: Recommended action is a potentially breaking change ┌───────────────┬──────────────────────────────────────────────────────────────┐ │ Low │ Prototype Pollution │ ├───────────────┼──────────────────────────────────────────────────────────────┤ │ Package │ lodash │ ├───────────────┼──────────────────────────────────────────────────────────────┤ │ Dependency of │ tap-spec [dev] │ ├───────────────┼──────────────────────────────────────────────────────────────┤ │ Path │ tap-spec > lodash │ ├───────────────┼──────────────────────────────────────────────────────────────┤ │ More info │ https://nodesecurity.io/advisories/577 │ └───────────────┴──────────────────────────────────────────────────────────────┘ found 1 low severity vulnerability in 336 scanned packages 1 vulnerability requires semver-major dependency updates.
This is fixed by upgrading tap-spec to latest version.
tap-spec
npm audit
produces the following warning:This is fixed by upgrading
tap-spec
to latest version.