Deprecated minimatch@2.0.10

The current release of gulp-istanbul (1.1.1) (transitively) requires minimatch@2.0.10 which is deprecated. The warning we get on an `npm install` has management worried:
```
npm WARN deprecated minimatch@2.0.10: 
    Please update to minimatch 3.0.2 or higher to avoid a RegExp DoS issue
```

The dependency chain to minimatch is:
```
gulp-istanbul@1.1.1
    istanbul-threshold-checker@0.1.0
        istanbul@0.3.22
            fileset@0.2.1
                minimatch@2.0.10 
```

As far as I can see upgrading to a newer istanbul-threshold-checker would be sufficient to get `minimatch@3.x`. It looks like this is already done in package.json in master. Would it be possible to release a new version of gulp-istanbul so the latest version no longer installs deprecated dependencies?

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

Uh oh!

Deprecated [email protected] #123

Metadata

Assignees

Labels

Projects

Milestone

Relationships

Development

Deprecated [email protected] #123

Description

Metadata

Metadata

Assignees

Labels

Projects

Milestone

Relationships

Development

Issue actions