One vulnerability a day keeps the security-conscious developers away.
https://www.npmjs.com/advisories/1589