Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Security upgrades to dev dependencies #2

Closed
wants to merge 1 commit into from
Closed

Security upgrades to dev dependencies #2

wants to merge 1 commit into from

Conversation

findlay-hannam
Copy link

npm audit found some security vulnerabilities in dependencies of this module. This PR does all the security upgrades possible at this time.

I've created ivanplenty/binford-logger#1 and ivanplenty/binford-slf4j#1 to upgrade the dependencies of our dependencies, but the owner hasn't been active on public repos in years. If those PRs aren't looked at, we can make a new npm dependency from my forks, or switch to something like https://www.npmjs.com/package/xxlogger, to resolve the rest of the dependency vulnerabilities.

@tootedom
Copy link
Owner

I've removed binford, and migrated to using an event emitter for the logging.
I've pushed an update of the library (1.0.0), the readme (https://github.com/tootedom/campbellcache#logging) shows how to register for the logs being emitted. Using the event emitter means you can use any logging library of your choosing.

cheers.

Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Labels
None yet
Projects
None yet
Development

Successfully merging this pull request may close these issues.

2 participants