search

segmentio / utm-params

parse and get all utm parameters
MIT License
41 stars 7 forks source link

Unmaintained? #11

Open mikemaccana opened 5 years ago

mikemaccana commented 5 years ago

Installing this module:

npm WARN deprecated istanbul@0.4.5: This module is no longer maintained, try this instead:
npm WARN deprecated   npm i nyc
npm WARN deprecated Visit https://istanbul.js.org/integrations for other alternatives.
npm WARN deprecated to-iso-string@0.0.2: to-iso-string has been deprecated, use @segment/to-iso-string inste
ad.
npm WARN deprecated jade@0.26.3: Jade has been renamed to pug, please install the latest version of pug inst
ead of jade
npm WARN deprecated minimatch@0.3.0: Please update to minimatch 3.0.2 or higher to avoid a RegExp DoS issue 
npm WARN deprecated circular-json@0.3.3: CircularJSON is in maintenance only, flatted is its successor.
mikemaccana commented 5 years ago 
$ npm audit

                    === npm audit security report ===                        

# Run  npm install --save-dev karma@4.0.0  to resolve 13 vulnerabilities
SEMVER WARNING: Recommended action is a potentially breaking change

Low             Regular Expression Denial of Service                          

Package         debug                                                         

Dependency of   karma [dev]                                                   

Path            karma > socket.io > debug                                     

More info       https://npmjs.com/advisories/534                              

Low             Regular Expression Denial of Service                          

Package         debug                                                         

Dependency of   karma [dev]                                                   

Path            karma > socket.io > engine.io > debug                         

More info       https://npmjs.com/advisories/534                              

Low             Regular Expression Denial of Service                          

Package         debug                                                         

Dependency of   karma [dev]                                                   

Path            karma > socket.io > socket.io-adapter > debug                 

More info       https://npmjs.com/advisories/534                              

Low             Regular Expression Denial of Service                          

Package         debug                                                         

Dependency of   karma [dev]                                                   

Path            karma > socket.io > socket.io-client > debug                  

More info       https://npmjs.com/advisories/534                              

Low             Regular Expression Denial of Service                          

Package         debug                                                         

Dependency of   karma [dev]                                                   

Path            karma > socket.io > socket.io-client > engine.io-client >     
                debug                                                         

More info       https://npmjs.com/advisories/534                              

Low             Regular Expression Denial of Service                          

Package         debug                                                         

Dependency of   karma [dev]                                                   

Path            karma > socket.io > socket.io-adapter > socket.io-parser >    
                debug                                                         

More info       https://npmjs.com/advisories/534                              

Low             Regular Expression Denial of Service                          

Package         debug                                                         

Dependency of   karma [dev]                                                   

Path            karma > socket.io > socket.io-client > socket.io-parser >     
                debug                                                         

More info       https://npmjs.com/advisories/534                              

Low             Regular Expression Denial of Service                          

Package         debug                                                         

Dependency of   karma [dev]                                                   

Path            karma > socket.io > socket.io-parser > debug                  

More info       https://npmjs.com/advisories/534                              

Moderate        Prototype Pollution                                           

Package         lodash                                                        

Dependency of   karma [dev]                                                   

Path            karma > lodash                                                

More info       https://npmjs.com/advisories/782                              

Low             Prototype Pollution                                           

Package         lodash                                                        

Dependency of   karma [dev]                                                   

Path            karma > lodash                                                

More info       https://npmjs.com/advisories/577                              

Low             Regular Expression Denial of Service                          

Package         braces                                                        

Dependency of   karma [dev]                                                   

Path            karma > chokidar > anymatch > micromatch > braces             

More info       https://npmjs.com/advisories/786                              

Low             Regular Expression Denial of Service                          

Package         braces                                                        

Dependency of   karma [dev]                                                   

Path            karma > expand-braces > braces                                

More info       https://npmjs.com/advisories/786                              

High            Regular Expression Denial of Service                          

Package         parsejson                                                     

Dependency of   karma [dev]                                                   

Path            karma > socket.io > socket.io-client > engine.io-client >     
                parsejson                                                     

More info       https://npmjs.com/advisories/528                              

# Run  npm install --save-dev mocha@6.0.1  to resolve 3 vulnerabilities
SEMVER WARNING: Recommended action is a potentially breaking change

High            Regular Expression Denial of Service                          

Package         minimatch                                                     

Dependency of   mocha [dev]                                                   

Path            mocha > glob > minimatch                                      

More info       https://npmjs.com/advisories/118                              

Low             Regular Expression Denial of Service                          

Package         debug                                                         

Dependency of   mocha [dev]                                                   

Path            mocha > debug                                                 

More info       https://npmjs.com/advisories/534                              

Critical        Command Injection                                             

Package         growl                                                         

Dependency of   mocha [dev]                                                   

Path            mocha > growl                                                 

More info       https://npmjs.com/advisories/146                              

found 16 vulnerabilities (12 low, 1 moderate, 2 high, 1 critical) in 7357 scanned packages
16 vulnerabilities require semver-major dependency updates.