Deprecated code and large package
-
Hi. jsreport looks great, but a few things is concerning me:
- jsreport depends on deprecated code. E.g. puppeteer@16.1.0 and some other deprecated packages ('npm i jsreport' returns a handful critical vulnerabilities)
- The package is huge (3.000+ files and 120 MB in size). Detailed package info can be seen : https://npmgraph.js.org/?q=jsreport
Are there any plan on addressing these issues?
Thanks!
-
jsreport depends on deprecated code. E.g. puppeteer@16.1.0 and some other deprecated packages ('npm i jsreport' returns a handful critical vulnerabilities)
We update the dependencies to fix vulnerabilities every release. This was answered many times, please see our statement here
https://github.com/jsreport/jsreport/blob/master/README.md#vulnerabilitiesThe package is huge (3.000+ files and 120 MB in size). Detailed package info can be seen : https://npmgraph.js.org/?q=jsreport
This is what the node.js applications look like, npm installs a lot of files.
If this bothers you, look at the compiled jsreport into single executable
https://jsreport.net/learn/single-file-executable
-
👍 Thanks for quick response!
