Description
We are using your package as a dependency in our project.
In our internal security scan (conducted via Black Duck), we found that some of the dependencies included in your package have not been updated for more than 12 months.
This includes both runtime and transitive dependencies that are part of your package's dependency tree.
We are raising this issue to make you aware of this observation. Are these outdated dependencies something you plan to update?
Outdated Dependency List (from Black Duck scan)
The following are the dependencies (direct or transitive) in your package that were identified as outdated (last updated >12 months ago):
| Library Name |
Current Version |
Package Name |
Package Version |
| lodash.escaperegexp |
4.1.2 |
fast-csv |
5.0.5 |
| lodash.groupby |
4.6.0 |
fast-csv |
5.0.5 |
| lodash.isfunction |
3.0.9 |
fast-csv |
5.0.5 |
| lodash.isnil |
4.0.0 |
fast-csv |
5.0.5 |
| lodash.isundefined |
3.0.1 |
fast-csv |
5.0.5 |
| lodash.uniq |
4.5.0 |
fast-csv |
5.0.5 |
Description
We are using your package as a dependency in our project.
In our internal security scan (conducted via Black Duck), we found that some of the dependencies included in your package have not been updated for more than 12 months.
This includes both runtime and transitive dependencies that are part of your package's dependency tree.
We are raising this issue to make you aware of this observation. Are these outdated dependencies something you plan to update?
Outdated Dependency List (from Black Duck scan)
The following are the dependencies (direct or transitive) in your package that were identified as outdated (last updated >12 months ago):