Rationale:
grunt is legacy at this point (last update was 3 years ago)
Grunt, or associated plugins, is the root contributor to many/most of the currently unresolvable dependency vulnerabilities. Whilst these are generally non-exploitable in this context, they are a source of unnecessary noise for system maintenance and contribute to a more general (and unhelpful) impression that "'npm audit' will never be clean".
Another mechanism for managing the build process needs to be found - whether shell scripts or node scripts or another build tool.
Rationale:
grunt is legacy at this point (last update was 3 years ago)
Grunt, or associated plugins, is the root contributor to many/most of the currently unresolvable dependency vulnerabilities. Whilst these are generally non-exploitable in this context, they are a source of unnecessary noise for system maintenance and contribute to a more general (and unhelpful) impression that "'npm audit' will never be clean".
Another mechanism for managing the build process needs to be found - whether shell scripts or node scripts or another build tool.