yaml-validator should not depend on vulnerable dependencies.
Actual behaviour
yaml-validator depends on check-type, last published 10 years ago. It is no longer maintained. It brings in underscore@1.6.0 which suffers from the security vulnerability: https://nvd.nist.gov/vuln/detail/CVE-2021-23358
Expected behaviour
yaml-validator should not depend on vulnerable dependencies.
Actual behaviour
yaml-validator depends on check-type, last published 10 years ago. It is no longer maintained. It brings in underscore@1.6.0 which suffers from the security vulnerability: https://nvd.nist.gov/vuln/detail/CVE-2021-23358
Versions and environment
Thank you and have some :grapes:.