coderextreme
commented
3 years ago Please address this will all due speed. Thanks!
Closed willemarcel closed 3 years ago
coderextreme
commented
3 years ago Please address this will all due speed. Thanks!
davidbeers
commented
3 years ago The replacement of the deprecated nomnom with the @gerhobbelt/nomnom by @willemarcel should resolve this issue since that fork is being actively maintained and the maintainer has entirely removed the dependency on underscore. Recommend merging this pull request. This vulnerability is exposing a lot of important projects that use jsonlint.
Snipx
commented
3 years ago Hey @zaach, thanks for your efforts on this project. We'd highly appreciate if you can merge this PR into a new release!
I think you have to replace nomnom, for something else -> "Package no longer supported. Contact support@npmjs.com for more info.": https://www.npmjs.com/package/nomnom
├─┬ jsonlint@1.6.3 │ │ ├── JSV@4.0.2 │ │ └─┬ nomnom@1.8.1 │ │ ├─┬ chalk@0.4.0 │ │ │ ├── ansi-styles@1.0.0 │ │ │ ├── has-color@0.1.7 │ │ │ └── strip-ansi@0.1.1 │ │ └── underscore@1.6.0