filetvignon
commented
5 years ago From what I could tell by reading the code, emailjs could be updated to the newest version without it breaking anything. That would fix this vulnerability. I'll try to make a PR whenever I can.
NPM is reporting a vulnerability due to the version of emailjs. The version has moment as a dependency and moment version is vulnerable.