Overview
Our project is facing npm deprecation warnings, dependency conflicts, and security vulnerabilities. Resolving these issues is essential for maintaining stability, security, and long-term maintainability.
Issues Identified
Deprecation Warnings
querystring@0.2.0: Replace with URLSearchParams.svgo@1.3.2: Upgrade to svgo@2.x.x.chokidar@2.1.8: Upgrade to chokidar@3.x.x.- Additional Deprecated Packages: Includes
urix, stable, uuid, and more.
Dependency Conflicts
- Example: Conflicts between
eslint@6.8.0 and @typescript-eslint/parser@1.13.0.
- Impact: May cause unexpected behavior or build failures.
Security Vulnerabilities
- Summary:
- Low: 5
- Moderate: 61
- High: 35
- Critical: 1
- Recommendations:
- Run
npm audit fix for non-breaking fixes.
- Use
npm audit fix --force with caution for breaking changes.
- Manually resolve remaining issues.
Proposed Actions
Upgrade Deprecated Dependencies
- Replace
querystring with URLSearchParams.
- Upgrade to
svgo@2.x.x and chokidar@3.x.x.
- Update other deprecated packages as necessary.
Resolve Dependency Conflicts
- Align
@typescript-eslint/parser and eslint versions to avoid conflicts.
- Address other dependency issues as identified.
Address Security Vulnerabilities
- Apply automated fixes with
npm audit fix.
- Manually update or replace packages with unresolved vulnerabilities.
- Test the application to ensure no regressions.
Acceptance Criteria
- Deprecated packages are upgraded or replaced.
- Conflicts are resolved with compatible dependencies.
- Security vulnerabilities are significantly reduced.
- The project builds and runs without warnings or issues.
- All functionalities are tested and verified.
- Documentation reflects updated dependencies and usage.
Additional Information
https://github.com/boostorg/website-v2-docs/actions/runs/13034378117/job/36361062783?pr=400#step:5:27
Overview
Our project is facing npm deprecation warnings, dependency conflicts, and security vulnerabilities. Resolving these issues is essential for maintaining stability, security, and long-term maintainability.
Issues Identified
Deprecation Warnings
querystring@0.2.0: Replace withURLSearchParams.svgo@1.3.2: Upgrade tosvgo@2.x.x.chokidar@2.1.8: Upgrade tochokidar@3.x.x.urix,stable,uuid, and more.Dependency Conflicts
eslint@6.8.0and@typescript-eslint/parser@1.13.0.Security Vulnerabilities
npm audit fixfor non-breaking fixes.npm audit fix --forcewith caution for breaking changes.Proposed Actions
Upgrade Deprecated Dependencies
querystringwithURLSearchParams.svgo@2.x.xandchokidar@3.x.x.Resolve Dependency Conflicts
@typescript-eslint/parserandeslintversions to avoid conflicts.Address Security Vulnerabilities
npm audit fix.Acceptance Criteria
Additional Information
https://github.com/boostorg/website-v2-docs/actions/runs/13034378117/job/36361062783?pr=400#step:5:27