Request to remove build dependencies in stable releases

Created on 20 March 2024, 9 months ago

As part of Security testing, the team reported vulnerability packages in the package-lock.json. We will not use those in runtime in production environments can we remove package.json and package-lock.json from the stable release to avoid this?
Also, I am attaching a patch for the same please review.

📌 Task
Status

Active

Version

2.1

Component

Miscellaneous

Created by

🇮🇳India sreeram_v Hyderabad

Live updates comments and jobs are added and updated live.
Sign in to follow issues

Comments & Activities

Production build 0.71.5 2024