I'm a fan of Open Source and have a growing interest in serverless and edge computing. I'm not a big fan of spiders, but they're doing good work eating bugs. I also stream on Twitch.
(I was adding TS types to our npm package: https://www.npmjs.com/package/cumulio) And dts-gen has
```yargs-parser```
as a dependency. But that dependency is being flagged as vulnerable. And you can't fix it via npm audit because it's a dependency of a dependency. Seems I'm not the only one in this pickle, found many more: https://github.com/JeffreyWay/laravel-mix/issues/2389
BUT, since my types are already created now I think I can just remove dts-gen from my dependencies and call it a day? Not sure.. And then.. I gotta figure out how to upload a new version to npm 😂
I've come to the world of web dev from a low level C++ developer background and most of the time it feels like a breath of fresh air... Until NPM hits you with this 💩 still learning... :)
For further actions, you may consider blocking this person and/or reporting abuse
We're a place where coders share, stay up-to-date and grow their careers.
I’m curious which npm package it is and which dependency?
Alright, ready for this? So, it's a dependency of