mbonaci
commented
5 years ago I bumped the version in package.json.
package-lock.json is an auto-generated file that npm maintains.
yarn.lock analogous for yarn.
Closed otisg closed 5 years ago
mbonaci
commented
5 years ago I bumped the version in package.json.
package-lock.json is an auto-generated file that npm maintains.
yarn.lock analogous for yarn.
Github says there is a vulnerability in 2.6.8 Not sure if the "integrity" sha fingerprint needs to change or not, @mbonaci ?