massakam opened a new pull request, #340: URL: https://github.com/apache/pulsar-client-node/pull/340
### Motivation Executing `npm run license:report` in this repository will report the licenses of dependent modules to `report/licenses.html`. However, the [grunt-license-report](https://www.npmjs.com/package/grunt-license-report) module used by this command has not been maintained for nearly a decade, and the GitHub repository is a dead link. As a result, some modules with security vulnerabilities are installed by `grunt-license-report` dependencies. ### Modifications Removed `grunt-license-report` from dev dependencies and added [license-checker](https://www.npmjs.com/package/license-checker) instead. `license-checker` has already been installed since `grunt-license-report` depends on it, but its version is 2.0.1 which is very old. Installing `license-checker` directly bumps its version to 25.0.1. By the way, `license-checker` also hasn't been released in about 5 years, but it seems to be much more widely used than `grunt-license-report`. ### Verifying this change - [ ] Make sure that the change passes the CI checks. ### Documentation - [ ] `doc-not-needed` -- This is an automated message from the Apache Git Service. To respond to the message, please log on to GitHub and use the URL above to go to the specific comment. To unsubscribe, e-mail: [email protected] For queries about this service, please contact Infrastructure at: [email protected]
