GitHub user carlosduclos opened an issue:

    https://github.com/apache/couchdb-nano/issues/19

    Dependency might be out of date

    [Original issue](https://github.com/dscape/nano/issues/307)
    
    __danielcobo__
    It seems the dependency used for following changes in CouchDB could be 
outdated.
    
    Running npm install nano on a current version of Node will log npm WARN 
engine [email protected]: wanted: {"node":"0.12.x || 0.10.x || 0.8.x"} (current: 
{"node":"4.2.2","npm":"2.14.7"})
    
    The issue has been already raised at the repository of the dependency, 
however it looks like it has not yet been resolved - iriscouch/follow#73
    
    __satazor__
    Getting the same issue. The README points to 
https://github.com/jhs/follow/blob/master/package.json#L11 which has the issue 
resolved, but irishcoush's follow is being used instead of jh's fork. I'm 
confused.
    
    __collinsrj__
    nsp flags this as a security issue:
    
    [email protected] > [email protected] > [email protected] > [email protected]
    
    There is a CVE open against hawk. See here 
https://nodesecurity.io/advisories/77

----

----


---
If your project is set up for it, you can reply to this email and have your
reply appear on GitHub as well. If your project does not have this feature
enabled and wishes so, or if the feature is enabled but not working, please
contact infrastructure at [email protected] or file a JIRA ticket
with INFRA.
---

Reply via email to