@brodybits There is no `cordova-common@3` in the NPM registry. I can't change it to something that doesn't exist.
Also, if this PR is not pushed, then NPM audit will always show security risk until we do a major release for cordova-common. I would like to to have at least the audit resolved. Even if we are not releasing the major this minute. We still build nightlies which would show these risks, though it should not affect to the users' app. [ Full content available at: https://github.com/apache/cordova-osx/pull/55 ] This message was relayed via gitbox.apache.org for [email protected]
