Closed acconrad closed 6 years ago
Node-globule is out of date and contains security fixes to dependencies that can be found via npm audit
npm audit
It's tagged "globule": "^1.0.0". The ^ means it will install the latest minor version. So it will install 1.2.1. Check your package-lock.json and npm install again.
"globule": "^1.0.0"
^
1.2.1
package-lock.json
npm install
Node-globule is out of date and contains security fixes to dependencies that can be found via
npm audit