Alright, ready for this? So, it's a dependency of
(I was adding TS types to our npm package: https://www.npmjs.com/package/cumulio) And dts-gen has ```yargs-parser``` as a dependency. But that dependency is being flagged as vulnerable. And you can't fix it via npm audit because it's a dependency of a dependency. Seems I'm not the only one in this pickle, found many more: https://github.com/JeffreyWay/laravel-mix/issues/2389 BUT, since my types are already created now I think I can just remove dts-gen from my dependencies and call it a day? Not sure.. And then.. I gotta figure out how to upload a new version to npm š I've come to the world of web dev from a low level C++ developer background and most of the time it feels like a breath of fresh air... Until NPM hits you with this š© still learning... :)
Are you sure you want to hide this comment? It will become hidden in your post, but will still be visible via the comment's permalink.
Hide child comments as well
Confirm
For further actions, you may consider blocking this person and/or reporting abuse
We're a place where coders share, stay up-to-date and grow their careers.
Alright, ready for this? So, it's a dependency of