Where possible, dependencies are frequently updated to their latest versions. In some cases, however, this is not feasible or does not provide sufficient return on the necessary investment to do a major version upgrade. The following dependencies are currently fixed to older versions:
- N/A at this time
In addition, overrides are defined in package.json for transitive
depencies that are locked to vulnerable versions. These overrides are:
- N/A at this time
These overrides should be periodically reviewed to determine if they are still needed.