Open joepie91 opened 4 years ago
Hi,
While auditing dependencies, I encountered a minified build in this library's npm package. This unfortunately makes it very difficult to audit the package, and I'd like to suggest removing it and/or distributing it outside of npm instead.
I've written an extensive explanation of the problem and the reasons for my suggestion here, so that I don't end up redoing the same explanation in every affected package: https://gist.github.com/joepie91/04cc8329df231ea3e262dffe3d41f848
Thanks!
Hi,
While auditing dependencies, I encountered a minified build in this library's npm package. This unfortunately makes it very difficult to audit the package, and I'd like to suggest removing it and/or distributing it outside of npm instead.
I've written an extensive explanation of the problem and the reasons for my suggestion here, so that I don't end up redoing the same explanation in every affected package: https://gist.github.com/joepie91/04cc8329df231ea3e262dffe3d41f848
Thanks!