[COMPASS-5082] Address npm audit (and dependabot?) results Created: 09/Sep/21  Updated: 10/Jan/24  Resolved: 23/Mar/23

Status: Closed
Project: Compass
Component/s: Tech debt
Affects Version/s: None
Fix Version/s: No version

Type: Task Priority: Major - P3
Reporter: Le Roux Bodenstein Assignee: Unassigned
Resolution: Won't Fix Votes: 0
Labels: None
Remaining Estimate: Not Specified
Time Spent: Not Specified
Original Estimate: Not Specified

Documentation Changes: Not Needed

 Description   

110 vulnerabilities (30 low, 26 moderate, 45 high, 9 critical)

Can we look at them and somehow explicitly ignore the ones we won't be fixing? Or file issues for the ones we will fix? Alternatively we can have a tool create PRs to bump these things for us, scan through the changelogs and merge PRs that are green according to CI.


Generated at Wed Feb 07 22:38:23 UTC 2024 using Jira 9.7.1#970001-sha1:2222b88b221c4928ef0de3161136cc90c8356a66.