We should tell npm to update our package versions that drive the 11ty library that converts our Markdown into HTML.
None of the dependabot alerts likely affects anything we're doing, as we use it entirely during CI/CD, but we should update to the latest package versions anyway to ease future maintenance.
Steps
[x] use npm update and npm audit fix --force to create the needed updates in package-lock.json.
[x] verify locally with npx @11ty/eleventy --serve
[x] review the pages locally and resolve any issues from the updates to 11ty.
npm update
npm audit fix --force
The --force flag might not be required, if the version of 11ty hasn't moved too far since last update, but it almost certainly is needed this time as 11ty recently had a big update.
The --force flag allows changes that result in needing changes to our Markdown templates, but it's unlikely to affect our site as we're not using includes or other advanced functionality.
We should tell
npm
to update our package versions that drive the11ty
library that converts our Markdown into HTML. None of thedependabot
alerts likely affects anything we're doing, as we use it entirely during CI/CD, but we should update to the latest package versions anyway to ease future maintenance.Steps
npm update
andnpm audit fix --force
to create the needed updates inpackage-lock.json
.npx @11ty/eleventy --serve
11ty
.The
--force
flag allows changes that result in needing changes to our Markdown templates, but it's unlikely to affect our site as we're not usingincludes
or other advanced functionality.