ulnerable dependencies in 2.0.0-next.3e165448

[shai32]

Version 2.0.0-next.3e165448 (the latest version as of this writing) has dependencies with known security vulnerabilities. Thank you in advance for looking into this! 😄

Is this a bug report?
Yes

Did you try recovering your dependencies?
Yes

Which terms did you search for in User Guide?
security, vulnerability, hoek

Environment
node -v: v8.9.2
yarn --version (if you use Yarn): 1.9.4
npm ls react-scripts (if you haven’t ejected):
ganymede@0.1.0 /home/rdebeasi/Projects/ganymede
└── react-scripts@1.1.4
Operating system: Fedora 27
Browser and version (if relevant): N/A
Steps to Reproduce

[gaearon]

Thanks for reporting but there is no actual vulnerability here.

See upstream response from fsevents:

fsevents/fsevents#200 (comment)

Also:

fsevents/fsevents#198

nodejs/node#18839 (comment)

We’ll pick the “fix” up with the next update but this is not a real vulnerability so I’m closing.