build: bump static site Javascript dependencies

phylum-dev / documentation

Documentation for the Phylum products

1 stars 1 forks source link

build: bump static site Javascript dependencies #96

Closed phylum-bot closed 7 months ago

phylum-bot commented 7 months ago

Bump dependencies in site/package-lock.json for all SemVer-compatible updates.

cd-work commented 7 months ago

Phylum analysis results:

Phylum Supply Chain Risk Analysis — FAILURE

[npm] html-minifier-terser@7.2.0
  [AUT] Author of html-minifier-terser@7.2.0 is using a disposable email domain

The only affected package is unrelated to this upgrade.

maxrake commented 7 months ago

The only affected package is unrelated to this upgrade.

That package was reviewed and suppressed last month:

The current changes in this PR were analyzed manually and appear fine, with the exception of a few packages that are still processing:

I'll keep an eye on the progress of those packages and report back here when they are done.