nfreear / nick-bot

An experimental Virtual assistant / Chat-bot.
0 stars 0 forks source link

Upgrade 'NLP.js' from ~4.1.4 to ~4.6.0; other updates ... #5

Open nfreear opened 4 years ago

nfreear commented 4 years ago

NLP.js "core" package


15-July-2020

Mxxx8:nick-bot nXX$ npm outdated
Package                      Current  Wanted  Latest  Location
@nlpjs/basic                   4.2.1   4.8.0   4.8.0  nick-bot
@nlpjs/directline-connector    4.1.4   4.6.2   4.6.2  nick-bot
@nlpjs/express-api-server      4.2.0   4.8.0   4.8.0  nick-bot
@nlpjs/lang-zh                 4.2.1   4.6.0   4.6.0  nick-bot
@nlpjs/ner                     4.1.4   4.6.0   4.6.0  nick-bot
semistandard                  14.2.0  14.2.2  14.2.2  nick-bot
--

22-July-2020

Mxxx8:nick-bot nXX$ npm outdated

Package                      Current  Wanted  Latest  Location
@nlpjs/basic                   4.2.1   4.8.4   4.8.4  nick-bot
@nlpjs/directline-connector    4.1.4   4.6.2   4.6.2  nick-bot
@nlpjs/express-api-server      4.2.0   4.8.0   4.8.0  nick-bot
@nlpjs/lang-zh                 4.2.1   4.8.1   4.8.1  nick-bot
@nlpjs/ner                     4.1.4   4.6.0   4.6.0  nick-bot
semistandard                  14.2.0  14.2.2  14.2.2  nick-bot
Mxxx8:nick-bot nXX$ 

---
Mxxx8:nick-bot nXX$ npm audit

                       === npm audit security report ===                        

# Run  npm update lodash --depth 4  to resolve 3 vulnerabilities
┌───────────────┬──────────────────────────────────────────────────────────────┐
│ Low           │ Prototype Pollution                                          │
├───────────────┼──────────────────────────────────────────────────────────────┤
│ Package       │ lodash                                                       │
├───────────────┼──────────────────────────────────────────────────────────────┤
│ Dependency of │ semistandard [dev]                                           │
├───────────────┼──────────────────────────────────────────────────────────────┤
│ Path          │ semistandard > eslint > inquirer > lodash                    │
├───────────────┼──────────────────────────────────────────────────────────────┤
│ More info     │ https://npmjs.com/advisories/1523                            │
└───────────────┴──────────────────────────────────────────────────────────────┘

┌───────────────┬──────────────────────────────────────────────────────────────┐
│ Low           │ Prototype Pollution                                          │
├───────────────┼──────────────────────────────────────────────────────────────┤
│ Package       │ lodash                                                       │
├───────────────┼──────────────────────────────────────────────────────────────┤
│ Dependency of │ semistandard [dev]                                           │
├───────────────┼──────────────────────────────────────────────────────────────┤
│ Path          │ semistandard > eslint > lodash                               │
├───────────────┼──────────────────────────────────────────────────────────────┤
│ More info     │ https://npmjs.com/advisories/1523                            │
└───────────────┴──────────────────────────────────────────────────────────────┘

┌───────────────┬──────────────────────────────────────────────────────────────┐
│ Low           │ Prototype Pollution                                          │
├───────────────┼──────────────────────────────────────────────────────────────┤
│ Package       │ lodash                                                       │
├───────────────┼──────────────────────────────────────────────────────────────┤
│ Dependency of │ semistandard [dev]                                           │
├───────────────┼──────────────────────────────────────────────────────────────┤
│ Path          │ semistandard > eslint > table > lodash                       │
├───────────────┼──────────────────────────────────────────────────────────────┤
│ More info     │ https://npmjs.com/advisories/1523                            │
└───────────────┴──────────────────────────────────────────────────────────────┘

...
...

found 6 low severity vulnerabilities in 592 scanned packages
  run `npm audit fix` to fix 3 of them.
  3 vulnerabilities require manual review. See the full report for details.
Mxxx8:nick-bot nXX$ 

nfreear commented 4 years ago

02-October-2020

Mxx:nick-bot nXX$ npm outdated

  Package                      Current  Wanted  Latest  Location
  @nlpjs/basic                   4.8.4  4.12.0  4.12.0  nick-bot
  @nlpjs/directline-connector    4.6.2  4.11.2  4.11.2  nick-bot
  @nlpjs/express-api-server      4.8.0  4.12.0  4.12.0  nick-bot
  @nlpjs/lang-zh                 4.8.1  4.11.0  4.11.0  nick-bot
  @nlpjs/ner                     4.6.0  4.12.0  4.12.0  nick-bot
  semistandard                  14.2.2  14.2.3  14.2.3  nick-bot
  tplink-cloud-api               0.6.1   0.6.1   0.7.0  nick-bot

Mxx:nick-bot nXX$ npm i @nlpjs/basic@^4.12.0 --save