Get rid of those vulnerabilities warnings

npm ^8.0.0 has a nice feature overrides

for a cli-bundler based project you can add this section to package.json to get rid of vulnerable packages. ymmv.

  "overrides": {
    "chokidar": "^3.0.0",
    "glob-stream": "^7.0.0",
    "glob-parent": "^6.0.0",
    "micromatch": "^4.0.0"

@huochunpeng promised to update templates. (-:

1 Like

Both v1 and v2 skeletons were updated to work better with npm v8.

1 Like