Fix node package vulnerabilities, switch to NPM

Yarn does not support automatic fix of vulnerabilities (yarnpkg/yarn#7075) so use NPM which does Signed-off-by: Knut Ahlers <knut@ahlers.me>
2024-11-08 17:30:10 +00:00 · 2019-07-14 00:06:31 +02:00 · 2019-07-14 00:06:31 +02:00 · aad5aeaf79
commit aad5aeaf79
parent 6357317b30
4 changed files with 10198 additions and 8239 deletions
--- a/2
+++ b/2
@ -7,7 +7,7 @@ compile_js:
 		-w "$(CURDIR)/js" \
 		-u $(shell id -u) \
 		node:10-alpine \
-		sh -c "yarn && npx webpack"
+		sh -c "npx npm@lts ci && npx webpack"

 debug:
 	go-bindata --debug -o cmd/password/bindata.go --pkg=main frontend/...
--- a/cmd/password/bindata.go
+++ b/cmd/password/bindata.go
--- a/js/package-lock.json
+++ b/js/package-lock.json
--- a/js/yarn.lock
+++ b/js/yarn.lock