Closed willemarcel closed 3 years ago
Please address this will all due speed. Thanks!
The replacement of the deprecated nomnom with the @gerhobbelt/nomnom by @willemarcel should resolve this issue since that fork is being actively maintained and the maintainer has entirely removed the dependency on underscore. Recommend merging this pull request. This vulnerability is exposing a lot of important projects that use jsonlint.
Hey @zaach, thanks for your efforts on this project. We'd highly appreciate if you can merge this PR into a new release!
I think you have to replace nomnom, for something else -> "Package no longer supported. Contact support@npmjs.com for more info.": https://www.npmjs.com/package/nomnom
├─┬ jsonlint@1.6.3 │ │ ├── JSV@4.0.2 │ │ └─┬ nomnom@1.8.1 │ │ ├─┬ chalk@0.4.0 │ │ │ ├── ansi-styles@1.0.0 │ │ │ ├── has-color@0.1.7 │ │ │ └── strip-ansi@0.1.1 │ │ └── underscore@1.6.0