You signed in with another tab or window. Reload to refresh your session.You signed out in another tab or window. Reload to refresh your session.You switched accounts on another tab or window. Reload to refresh your session.Dismiss alert
The bot has 3 critical severity vulnerabilities, 20 high severity, and 12 warnings. The projects has imported pm2, but is not using it, as well as discordjs still being on v13. Its been 2 years since the project was last updated. I suggest some maintenance is due since it has not been touched for more than 2 years.
Why this is a problem
Technical dept builds up over time, and outdated packages become increasingly difficult to fix the more major releases you skip. The potential vulnerabilities of the application also builds up over time, creating potential problems.
Expcted outcome
The expected outcome is that the bot has no vulnerabilities, and that all packages are up to date.
Proposed solution
The most logical solution (imo) would be divided in three parts:
Remove all unused packages.
Update all packages to their latest version.
Update discordjs version from 13 -> 14.
The text was updated successfully, but these errors were encountered:
Summary
The bot has 3 critical severity vulnerabilities, 20 high severity, and 12 warnings. The projects has imported pm2, but is not using it, as well as discordjs still being on v13. Its been 2 years since the project was last updated. I suggest some maintenance is due since it has not been touched for more than 2 years.
Why this is a problem
Technical dept builds up over time, and outdated packages become increasingly difficult to fix the more major releases you skip. The potential vulnerabilities of the application also builds up over time, creating potential problems.
Expcted outcome
The expected outcome is that the bot has no vulnerabilities, and that all packages are up to date.
Proposed solution
The most logical solution (imo) would be divided in three parts:
The text was updated successfully, but these errors were encountered: