this entire project depends on 500 npm packages. Each with 5 vulnerabilities. we're one dependency update away from a complete meltdown.