When users install dependencies, they'll see one high security vulnerability, due to a code injection problem with js-yaml, used by Mocha (more info here: https://www.npmjs.com/advisories/813 )