rpl
commented
2 years ago @mozfreddyb I forgot to mention that we may also update the package-lock.json in this PR (at least if that is the convention you also prefer to use for keeping the lock file in sync).
This clears out a security issue with a transitive dependency. The issue is low-severity and linter-developers only, which makes it OK to talk about in public :)