faint-gold-9507004/19/2019, 4:46 AM
pull in an unfortuantely large downstream set of dependencies. We are looking into newer alternatives to replace these that may have smaller transitive dependency surface area. We are also considering whether to pre-package dependencies instead of pull from NPM, to ensure tighter specification of patch versions. But this is something that generally goes against common practice for NPM/Node.js, so we have not yet chosen to do this.
If you (or others) have any specific recommendations related to this, please do let us know.