Update NPM registry to have latest dependencies (specifically yargs/y18n) #10897
Labels
Comments
|
looks like ya'll published a version with the patched y18n 4.0.1 so I'll close this issue. |
|
This issue has been automatically locked since there has not been any recent activity after it was closed. Please open a new issue for related bugs. |
Sign up for free
to subscribe to this conversation on GitHub.
Already have an account?
Sign in.
🐛 Bug Report
npm jest has outdated dependencies
To Reproduce
npm i --save jest
check package lock to see outdated yargs and subsequently y18n
Expected behavior
installing jest should have latest dependencies
Link to repl or repo (highly encouraged)
y18n has fixed a potential security issue with the current version that comes with jest. This issue also pops up on vulnerability scans
yargs/y18n#96
envinfo
System:
OS: Windows 10 10.0.18363
CPU: (12) x64 Intel(R) Core(TM) i7-8850H CPU @ 2.60GHz
Binaries:
Node: 12.14.1 - C:\Program Files\nodejs\node.EXE
npm: 6.13.4 - C:\Program Files\nodejs\npm.CMD
npmPackages:
jest: ^26.6.3 => 26.6.3
The text was updated successfully, but these errors were encountered: