I said I would work on updating the dependencies here. This is the first pass at it, designed to be very low-touch. Specifically the goal of this PR is resolve as many results reported from pnpm audit without moving to dependencies that are incompatible with Node 12, Webpack 4, etc., and this does that, with one exception, which results from serve depending on a version of minimatch that has a ReDoS issue in the generated configs.
In a near-future follow-on, I'll introduce changes that:
I said I would work on updating the dependencies here. This is the first pass at it, designed to be very low-touch. Specifically the goal of this PR is resolve as many results reported from
pnpm audit
without moving to dependencies that are incompatible with Node 12, Webpack 4, etc., and this does that, with one exception, which results fromserve
depending on a version ofminimatch
that has a ReDoS issue in the generated configs.In a near-future follow-on, I'll introduce changes that: