Update npm dependencies
woodbri opened this issue · comments
I just forked the repository and ran npm install
it reported:
found 21 vulnerabilities (3 low, 6 moderate, 11 high, 1 critical) in 7463 scanned packages
running npm audit fix
does not resolve the issues. I'm reluctant to to force the fix as I don't really understand how or where all these packages are getting used.
woodbri@B1B8B6F:~/work/wind-layer$ npm audit fix
npm WARN wind-layer@0.1.1 requires a peer of openlayers@^3.0.0 but none is installed. You must install peer dependencies yourself.
npm WARN wind-layer@0.1.1 requires a peer of maptalks@^0.40.0 but none is installed. You must install peer dependencies yourself.
npm WARN eslint-config-standard@12.0.0 requires a peer of eslint-plugin-node@>=7.0.0 but none is installed. You must install peer dependencies yourself.
npm WARN eslint-config-standard@12.0.0 requires a peer of eslint-plugin-promise@>=4.0.0 but none is installed. You must install peer dependencies yourself.
npm WARN eslint-loader@2.2.1 requires a peer of webpack@>=2.0.0 <5.0.0 but none is installed. You must install peer dependencies yourself.
npm WARN optional SKIPPING OPTIONAL DEPENDENCY: fsevents@1.2.11 (node_modules/fsevents):
npm WARN notsup SKIPPING OPTIONAL DEPENDENCY: Unsupported platform for fsevents@1.2.11: wanted {"os":"darwin","arch":"any"} (current: {"os":"linux","arch":"x64"})
fixed 3 of 21 vulnerabilities in 7463 scanned packages
17 vulnerabilities required manual review and could not be updated
1 package update for 1 vulnerability involved breaking changes
(use `npm audit fix --force` to install breaking changes; or refer to `npm audit` for steps to fix these manually)
@woodbri I'm doing this refactoring and will fix them in the next release, thanks