Remove vulnerable update-notifier dependencyΒ #569
Description
update-notifier@5 has a transitive dependency on got@9, which has an open vulnerability that will not be backported. See https://snyk.io/test/npm/sassdoc/2.7.4#SNYK-JS-GOT-2932019.
One potential solution: replace update-notifier with simple-update-notifier (nodemon has done that: remy/nodemon#2033).